Описание
MD5 hash support in github.com/foxcpp/maddy
Impact
This vulnerability affects maddy 0.5.1, 0.5.0 users using auth.shadow module and an extremely outdated system that still allows MD5 hashes in /etc/shadows.
Patches
Patch is available as part of the 0.5.2 release.
Workarounds
Ensure MD5 hashes are not present in /etc/shadow.
Пакеты
Наименование
github.com/foxcpp/maddy
go
Затронутые версииВерсия исправления
>= 0.5.0, < 0.5.2
0.5.2
3 Low
CVSS3
Дефекты
CWE-261
3 Low
CVSS3
Дефекты
CWE-261