[Pkg-shadow-devel] Bug#505271: closed ... fixed in shadow 1:4.1.1-6
psz at maths.usyd.edu.au
Fri Jan 23 03:06:31 UTC 2009
Thanks for the DSA-1709 fix.
Belatedly, I realize that this still leaves a DoS attack: fill up utmp
with entries for all possible PIDs, then login will fail. Maybe that is
"properly" Bug#505071 (as distinct from this one)? Please see there
about ideas on how to perform this DoS without access to group utmp.
Paul Szabo psz at maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia
More information about the Pkg-shadow-devel