Shadow-utils: possible password leak during passwd(1) change
CVE-2023-4641

5.5MEDIUM

Key Information:

Vendor
Red Hat
Status
shadow-utils
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
Red Hat Enterprise Linux 6
Vendor
CVE Published:
27 December 2023

Summary

A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on the second attempt, shadow-utils fails in cleaning the buffer used to store the first entry. This may allow an attacker with enough access to retrieve the password from the memory.

Affected Version(s)

Red Hat Enterprise Linux 8 2:4.6-19.el8

Red Hat Enterprise Linux 9 2:4.9-8.el9

shadow-utils 4.14.0

References

https://access.redhat.com/errata/RHSA-2023:6632
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:7112
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4641
vdb-entryx_refsource_REDHAT

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.