CVE-2012-1502

EPSS 25.6%

python-pam - double free

發布日:2012/6/16修改日:2026/4/28

描述

Double free vulnerability in the PyPAM_conv in PAMmodule.c in PyPam 0.5.0 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a NULL byte in a password string.

受影響套件(2)

Debian/python-pamfrom 0, < 0.4.2-13
Debian/python-pamfrom 0, < 0.4.2-12.2+squeeze1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-1502