Debian Security Update DSA-5784-1 oath-toolkit - security update

Thread starter LinuxBot
Start date Oct 4, 2024

LinuxBot

Member

Oct 4, 2024

#1

Fabian Vogt reported that the PAM module in oath-toolkit, a collection of components to build one-time password authentication systems, does not safely perform file operations in users's home directories when using the usersfile feature (allowing to place the OTP state in the home directory of the to-be-authenticated user). A local user can take advantage of this flaw for root privilege escalation.
https://security-tracker.debian.org/tracker/DSA-5784-1

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6327-1 request-tracker4 - security update

Replies: 0

Views: 28

Yesterday at 2:42 AM

LinuxBot

Debian Security Update DSA-6324-1 request-tracker5 - security update

Replies: 0

Views: 44

Saturday at 6:02 PM

LinuxBot

Debian Security Update DSA-6221-1 ntfs-3g - security update

Replies: 0

Views: 115

Apr 21, 2026

LinuxBot

Debian Security Update DSA-6282-1 rsync - security update

Replies: 0

Views: 93

May 20, 2026

LinuxBot

Debian Security Update DSA-6292-1 haveged - security update

Replies: 0

Views: 80

May 23, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 3,257 (members: 7, guests: 3,250)

Latest posts

First-time #Mint #Penguin Here!
- Latest: Rocketing-warp9
- 6 minutes ago
Mint
Ubuntu 26.04 Dock crashes
- Latest: Rocketing-warp9
- 14 minutes ago
Ubuntu forum
Linux on a Mac?
- Latest: Rocketing-warp9
- 15 minutes ago
Laptops / Netbooks
Solved Ali book project
- Latest: beanburrito
- Today at 12:44 PM
Getting Started
Is there any software that can completely edit Adobe Illustrator files?
- Latest: f33dm3bits
- Today at 11:52 AM
Desktop

Top