CVE-2018-17953 : Security Advisory and Response

A flaw in a SUSE-specific patch affects the pam_access rule matching in PAM 1.3.0, impacting openSUSE Leap 15.0 and SUSE Linux Enterprise 15.

Understanding CVE-2018-17953

This CVE involves a vulnerability in the pam_access module that could lead to the failure of pam_access rules in certain SUSE environments.

What is CVE-2018-17953?

The flaw in the patch for SUSE systems causes pam_access rules to not be correctly applied, potentially resulting in them failing open.

The Impact of CVE-2018-17953

The vulnerability has a CVSS base score of 7.5, indicating a high severity issue. It affects the integrity of the system without requiring any special privileges for exploitation.

Technical Details of CVE-2018-17953

The technical details of this CVE provide insight into the specific aspects of the vulnerability.

Vulnerability Description

An incorrect variable in a SUSE-specific patch for pam_access rule matching in PAM 1.3.0 could lead to pam_access rules not being applied as intended.

Affected Systems and Versions

Product: pam
Vendor: SUSE
Versions Affected: 1.3.0 (custom version before 2018-11-30)

Exploitation Mechanism

Attack Complexity: Low
Attack Vector: Network
Integrity Impact: High
Scope: Unchanged

Mitigation and Prevention

Mitigation strategies and preventive measures to address CVE-2018-17953.

Immediate Steps to Take

Apply the necessary patches provided by SUSE promptly.
Monitor vendor communications for updates and security advisories.

Long-Term Security Practices

Regularly update and patch all software and systems to prevent vulnerabilities.
Conduct security assessments and audits to identify and address any potential weaknesses.

Patching and Updates

Ensure all systems running affected versions of PAM are updated with the latest patches from SUSE.