Candidate: CVE-2020-11932
CRD: 2020-05-12 00:00:00 UTC
PublicDate: 2020-05-13 01:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11932
Description:
 It was discovered that the Subiquity installer for Ubuntu Server logged the
 LUKS full disk encryption password if one was entered.
Ubuntu-Description: 
Notes: 
Mitigation: 
Bugs: 
 https://bugs.launchpad.net/ubuntu/+source/subiquity/+bug/1878115
Priority: medium
Discovered-by: Moritz Naumann
Assigned-to: 
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N [2.3 LOW]


Patches_subiquity:
upstream_subiquity: released (20.05.2)
precise/esm_subiquity: DNE
trusty_subiquity: ignored (out of standard support)
trusty/esm_subiquity: DNE
xenial_subiquity: DNE
bionic_subiquity: needs-triage
eoan_subiquity: ignored (reached end-of-life)
focal_subiquity: needs-triage
groovy_subiquity: ignored (reached end-of-life)
hirsute_subiquity: ignored (reached end-of-life)
impish_subiquity: needs-triage
jammy_subiquity: needs-triage
devel_subiquity: needs-triage

snap_subiquity: released (20.05.2, revisions 1873+)