Описание
xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 0.9.5-2 |
| cosmic | not-affected | 0.9.5-2 |
| devel | not-affected | 0.9.5-2 |
| disco | not-affected | 0.9.5-2 |
| eoan | not-affected | 0.9.5-2 |
| esm-apps/bionic | not-affected | 0.9.5-2 |
| esm-apps/focal | not-affected | 0.9.5-2 |
| esm-apps/jammy | not-affected | 0.9.5-2 |
| esm-apps/xenial | released | 0.6.1-2ubuntu0.3+esm1 |
Показывать по
Ссылки на источники
7.5 High
CVSS2
7.3 High
CVSS3
Связанные уязвимости
xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect ...
xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
7.5 High
CVSS2
7.3 High
CVSS3