Количество 18
Количество 18

BDU:2025-05059
Уязвимость модуля аутентификации Linux-PAM, связанная с незащищённым хранением конфиденциальной информации, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

CVE-2024-10041
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications.

CVE-2024-10041
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications.

CVE-2024-10041
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications.

CVE-2024-10041
CVE-2024-10041
A vulnerability was found in PAM. The secret information is stored in ...

SUSE-SU-2025:1549-1
Security update for apparmor

SUSE-SU-2025:1517-1
Security update for apparmor

SUSE-SU-2025:1512-1
Security update for apparmor

SUSE-SU-2025:1511-1
Security update for apparmor

SUSE-SU-2025:1505-1
Security update for apparmor

SUSE-SU-2025:1334-1
Security update for pam

SUSE-SU-2025:1158-1
Security update for pam

SUSE-SU-2025:01511-1
Security update for apparmor
GHSA-7gm5-m2xc-vh2j
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications.
ELSA-2024-11250
ELSA-2024-11250: pam security update (MODERATE)

RLSA-2024:10379
Important: pam security update
ELSA-2024-10379
ELSA-2024-10379: pam security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
---|---|---|---|---|
![]() | BDU:2025-05059 Уязвимость модуля аутентификации Linux-PAM, связанная с незащищённым хранением конфиденциальной информации, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад |
![]() | CVE-2024-10041 A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications. | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад |
![]() | CVE-2024-10041 A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications. | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад |
![]() | CVE-2024-10041 A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications. | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад |
![]() | CVSS3: 4.7 | 0% Низкий | 6 месяцев назад | |
CVE-2024-10041 A vulnerability was found in PAM. The secret information is stored in ... | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад | |
![]() | SUSE-SU-2025:1549-1 Security update for apparmor | 0% Низкий | 2 месяца назад | |
![]() | SUSE-SU-2025:1517-1 Security update for apparmor | 0% Низкий | 2 месяца назад | |
![]() | SUSE-SU-2025:1512-1 Security update for apparmor | 0% Низкий | 2 месяца назад | |
![]() | SUSE-SU-2025:1511-1 Security update for apparmor | 0% Низкий | 2 месяца назад | |
![]() | SUSE-SU-2025:1505-1 Security update for apparmor | 0% Низкий | 2 месяца назад | |
![]() | SUSE-SU-2025:1334-1 Security update for pam | 0% Низкий | 3 месяца назад | |
![]() | SUSE-SU-2025:1158-1 Security update for pam | 0% Низкий | 3 месяца назад | |
![]() | SUSE-SU-2025:01511-1 Security update for apparmor | 0% Низкий | около 2 месяцев назад | |
GHSA-7gm5-m2xc-vh2j A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications. | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад | |
ELSA-2024-11250 ELSA-2024-11250: pam security update (MODERATE) | 7 месяцев назад | |||
![]() | RLSA-2024:10379 Important: pam security update | 7 месяцев назад | ||
ELSA-2024-10379 ELSA-2024-10379: pam security update (IMPORTANT) | 8 месяцев назад |
Уязвимостей на страницу