CVE-2011-3149

EPSS 0.06%
發布日:2012/7/22修改日:2026/4/28

描述

The _expand_arg function in the pam_env module (modules/pam_env/pam_env.c) in Linux-PAM (aka pam) before 1.1.5 does not properly handle when environment variable expansion can overflow, which allows local users to cause a denial of service (CPU consumption).

受影響套件(1)

參考連結(1)