Oval Definition:	oval:com.ubuntu.cosmic:def:201892750000000
Revision Date: 2018-04-04 Version: 1 Title: CVE-2018-9275 on Ubuntu 18.10 (cosmic) - untriaged. Description: In check_user_token in util.c in the Yubico PAM module (aka pam_yubico) 2.18 through 2.25, successful logins can leak file descriptors to the auth mapping file, which can lead to information disclosure (serial number of a device) and/or DoS (reaching the maximum number of file descriptors). Family: unix Class: vulnerability Status: Reference(s): CVE-2018-9275 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND yubico-pam: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
BACK