CVE-2018-1113MEDIUMCVSS 5.3fixed in 2.11.42018-07-03
CVE-2018-1113 [MEDIUM] CWE-285 CVE-2018-1113: setup before version 2.11.4-1.fc28 in Fedora and Red Hat Enterprise Linux added /sbin/nologin and /u
setup before version 2.11.4-1.fc28 in Fedora and Red Hat Enterprise Linux added /sbin/nologin and /usr/sbin/nologin to /etc/shells. This violates security assumptions made by pam_shells and some daemons which allow access based on a user's shell being listed in /etc/shells. Under some circumstances, users which had their shell changed to /sbin/nologin
nvd