CVE-2009-3232 (retired)

Priority
Description
pam-auth-update for PAM, as used in Ubuntu 8.10 and 9.4, and Debian
GNU/Linux, does not properly handle an "empty selection" for system
authentication modules in certain rare configurations, which causes any
attempt to be successful and allows remote attackers to bypass
authentication.
Assigned-to
slangasek
Package
Source: pam (LP Ubuntu Debian)
Upstream:released (1.0.1-10)
More Information

Updated: 2019-08-23 08:36:28 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)