Query PR
github/codeql#8595
Language
Python
CVE(s) ID list
CWE
CWE-285
Report
Using only a call to pam_authenticate to check the validity of a login can lead to authorization bypass vulnerabilities. A pam_authenticate only verifies the credentials of a user. It does not check if a user has an appropriate authorization to actually login. This means a user with a expired login or a password can still access the system.
This PR includes a qhelp describing the issue, a query which detects instances where a call to pam_acc_mgmt does not follow a call to pam_authenticate and it's corresponding tests.
Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc).
Blog post link
No response
Query PR
github/codeql#8595
Language
Python
CVE(s) ID list
CWE
CWE-285
Report
Using only a call to
pam_authenticateto check the validity of a login can lead to authorization bypass vulnerabilities. Apam_authenticateonly verifies the credentials of a user. It does not check if a user has an appropriate authorization to actually login. This means a user with a expired login or a password can still access the system.This PR includes a qhelp describing the issue, a query which detects instances where a call to
pam_acc_mgmtdoes not follow a call topam_authenticateand it's corresponding tests.Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc).
Blog post link
No response