PublicDate: 2008-07-28 17:41:00 UTC
Candidate: CVE-2008-1946
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1946
Description:
 The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1
 allows local users to gain the privileges of a (1) locked or (2) expired
 account by entering the account name on the command line, related to
 improper use of the pam_succeed_if.so module.
Ubuntu-Description:
Notes:
Bugs:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS: 

Patches_coreutils:
upstream_coreutils: released (5.93)
dapper_coreutils: not-affected
feisty_coreutils: not-affected
gutsy_coreutils: not-affected
hardy_coreutils: not-affected
devel_coreutils: not-affected