CVE-2016-4484 in Ubuntu

CVE-2016-4484

Priority

Low

Description

The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier
allows physically proximate attackers to gain shell access via many log in
attempts with an invalid password.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4484

Bugs

https://launchpad.net/bugs/1660701

Package

Source: cryptsetup (LP Ubuntu Debian)

Upstream:	released (2:1.7.3-2)
Ubuntu 12.04 ESM (Precise Pangolin):	needed
Ubuntu 14.04 LTS (Trusty Tahr):	needed
Ubuntu 16.04 LTS (Xenial Xerus):	needed
Ubuntu 17.04 (Zesty Zapus):	needed
Ubuntu 17.10 (Artful Aardvark):	needed
Ubuntu 18.04 LTS (Bionic Beaver):	needed

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2017-12-14 19:21:16 UTC (commit 13907)