Packages
- pam - Pluggable Authentication Modules
Details
Matthias Gerstner discovered that the PAM pam_namespace module incorrectly
handled special files when performing directory checks. A local attacker
could possibly use this issue to cause PAM to stop responding, resulting in
a denial of service.
Matthias Gerstner discovered that the PAM pam_namespace module incorrectly
handled special files when performing directory checks. A local attacker
could possibly use this issue to cause PAM to stop responding, resulting in
a denial of service.
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 23.10 mantic | libpam-modules – 1.5.2-6ubuntu1.1 | ||
| 23.04 lunar | libpam-modules – 1.5.2-5ubuntu1.1 | ||
| 22.04 jammy | libpam-modules – 1.4.0-11ubuntu2.4 | ||
| 20.04 focal | libpam-modules – 1.3.1-5ubuntu4.7 | ||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.