CVE-2019-12210 — Pam-u2f vulnerability

7 documents5 sources

Severity

8.1HIGHNVD

EPSS

0.4%

top 38.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Yubico Pam-u2f Debian Pam-u2f

Timeline

PublishedJun 4

Latest updateMay 24

Description

In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debug_file, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it. This can leak sensitive information and also, if written to, be used to fill the disk or plant misinformation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages3 packages

▶Debianyubico/pam-u2f< 1.0.8-1+3

▶NVDyubico/pam-u2f1.0.7

▶debiandebian/pam-u2f< pam-u2f 1.0.8-1 (bookworm)

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-pxf2-5pmm-5r8f: In Yubico pam-u2f 1↗2022-05-24

▶

OSV

CVE-2019-12210: In Yubico pam-u2f 1↗2019-06-04

▶

📋Vendor Advisories

Debian

CVE-2019-12210: pam-u2f - In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file ...↗2019

▶

💬Community

Bugzilla

CVE-2019-12210 pam-u2f: file descriptor not being closed with debug configuration leads to information disclosure [fedora-all]↗2019-06-06

▶

Bugzilla

CVE-2019-12210 pam-u2f: file descriptor not being closed with debug configuration leads to information disclosure↗2019-06-06

▶

Bugzilla

Debug file descriptor leak CVE-2019-1221 and insecure debug file handling CVE-2019-12209↗2019-06-05

▶