Количество 9
Количество 9
CVE-2019-12210
In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation.
CVE-2019-12210
In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation.
CVE-2019-12210
In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug ...
GHSA-pxf2-5pmm-5r8f
In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation.
BDU:2019-02527
Уязвимость PAM-модуля Yubico pam-u2f, связанная с отсутствием защиты служебных данных, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации
openSUSE-SU-2019:1725-1
Security update for libu2f-host, pam_u2f
openSUSE-SU-2019:1708-1
Security update for libu2f-host, pam_u2f
SUSE-SU-2019:1750-1
Security update for libu2f-host, pam_u2f
SUSE-SU-2019:1749-1
Security update for libu2f-host
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-12210 In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation. | CVSS3: 8.1 | 0% Низкий | больше 6 лет назад |
 | CVE-2019-12210 In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation. | CVSS3: 8.1 | 0% Низкий | больше 6 лет назад |
| CVE-2019-12210 In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug ... | CVSS3: 8.1 | 0% Низкий | больше 6 лет назад |
| GHSA-pxf2-5pmm-5r8f In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation. | CVSS3: 8.1 | 0% Низкий | больше 3 лет назад |
 | BDU:2019-02527 Уязвимость PAM-модуля Yubico pam-u2f, связанная с отсутствием защиты служебных данных, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации | CVSS3: 8.1 | 0% Низкий | больше 6 лет назад |
 | openSUSE-SU-2019:1725-1 Security update for libu2f-host, pam_u2f | больше 6 лет назад | ||
| openSUSE-SU-2019:1708-1 Security update for libu2f-host, pam_u2f | больше 6 лет назад | ||
| SUSE-SU-2019:1750-1 Security update for libu2f-host, pam_u2f | больше 6 лет назад | ||
| SUSE-SU-2019:1749-1 Security update for libu2f-host | больше 6 лет назад |
Уязвимостей на страницу