Matteo Croce wrote:
> Package: passwd
> Version: 1:4.0.14-9
> Severity: critical
> Tags: security
> Justification: root security hole
>
> Just press ^D instead of the new password and passwd will segfaults.
> I think that this is grave because it's set uid root.
>
> $ passwd
> Changing password for matteo
> (current) UNIX password:
> Enter new UNIX password:^D
> Retype new UNIX password:^D
> Segmentation fault
> [~]$
What security implications do you see? If only ^D causes a segfault
you can't exploit it for privilege escalation.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
