* Steve Langasek <[email protected]>, 2010-10-11, 12:17:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-3435"This flaw can lead to information disclosure."
"User can exploit this flaw by symliking ~/.pam_environment to some other file that should be read by pam_env with root privileges and log in to the system. Lines of the file that have expected KEY=VALUE form are made available to user via environment. [...] Possible targets are shell scripts with hard-coded passwords (e.g. various backup scripts), or various INI file format configuration files (such as MySQL's my.cnf, that can contain database password; however, pam_env does not tolerate spaces around '=', which may be allowed in those INI files)."
This one does sound grave to me. -- Jakub Wilk
signature.asc
Description: Digital signature
