CVE-2018-6558

NameCVE-2018-6558
DescriptionThe pam_fscrypt module in fscrypt before 0.2.4 may incorrectly restore primary and supplementary group IDs to the values associated with the root user, which allows attackers to gain privileges via a successful login through certain applications that use Linux-PAM (aka pam).
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs907074

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
fscrypt (PTS)bullseye0.2.9-1fixed
bookworm0.3.3-1fixed
sid, trixie0.3.5-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
fscryptsource(unstable)0.2.4-1907074

Notes

https://bugs.launchpad.net/ubuntu/+source/fscrypt/+bug/1787548
https://github.com/google/fscrypt/issues/77
https://github.com/google/fscrypt/pull/103
Search for package or bug name: Reporting problems