CVE-2011-3149low
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
The _expand_arg function in the pam_env module (modules/pam_env/pam_env.c) in Linux-PAM (aka pam) before 1.1.5 does not properly handle when environment variable expansion can overflow, which allows local users to cause a denial of service (CPU consumption).
References
http://secunia.com/advisories/46583
http://secunia.com/advisories/49711
http://security.gentoo.org/glsa/glsa-201206-31.xml
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:linux-pam:linux-pam:0.99.1.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.2.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.2.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.3.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.4.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.5.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.2:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.6.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.7.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.7.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.8.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.8.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.9.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:0.99.10.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-pam:linux-pam:*:*:*:*:*:*:*:* versions up to 1.1.4 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 75991 | openSUSE Security Update : pam (openSUSE-SU-2011:1204-1) | Nessus | SuSE Local Security Checks | medium |
| 75704 | openSUSE Security Update : pam (openSUSE-SU-2011:1208-1) | Nessus | SuSE Local Security Checks | medium |
| 69719 | Amazon Linux AMI : pam (ALAS-2013-160) | Nessus | Amazon Linux Local Security Checks | medium |
| 68757 | Oracle Linux 6 : pam (ELSA-2013-0521) | Nessus | Oracle Linux Local Security Checks | medium |
| 65152 | CentOS 6 : pam (CESA-2013:0521) | Nessus | CentOS Local Security Checks | medium |
| 64955 | Scientific Linux Security Update : pam on SL6.x i386/x86_64 (20130221) | Nessus | Scientific Linux Local Security Checks | medium |
| 64768 | RHEL 6 : pam (RHSA-2013:0521) | Nessus | Red Hat Local Security Checks | medium |
| 59704 | GLSA-201206-31 : Linux-PAM: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 57239 | SuSE 10 Security Update : pam (ZYPP Patch Number 7814) | Nessus | SuSE Local Security Checks | medium |
| 57126 | SuSE 11.1 Security Update : pam (SAT Patch Number 5342) | Nessus | SuSE Local Security Checks | medium |
| 57073 | Fedora 15 : pam-1.1.5-1.fc15 (2011-16365) | Nessus | Fedora Local Security Checks | low |
| 57002 | Fedora 16 : pam-1.1.5-1.fc16 (2011-16390) | Nessus | Fedora Local Security Checks | low |
| 56701 | SuSE 10 Security Update : pam (ZYPP Patch Number 7815) | Nessus | SuSE Local Security Checks | medium |
| 56629 | Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : pam vulnerabilities (USN-1237-1) | Nessus | Ubuntu Local Security Checks | medium |
| 56622 | Debian DSA-2326-1 : pam - several vulnerabilities | Nessus | Debian Local Security Checks | medium |