Incorrect Variable in SUSE Patch for PAM Access Rule Matching Vulnerability

Incorrect Variable in SUSE Patch for PAM Access Rule Matching Vulnerability

CVE-2018-17953 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

A incorrect variable in a SUSE specific patch for pam_access rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pam_access rules not being applied (fail open).

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.