VDB

GCVE-110-MAGEIA-2015-266

GCVE-110-MAGEIA-2015-266
Advisory Published
Vulnetix · Advisory published July 5, 2015
If SELinux is enabled, the _unix_run_helper_binary function in Linux-PAM 1.1.8 and earlier hangs indefinitely when verifying a password of 65536 characters, which allows attackers to conduct username enumeration and denial of service attacks (CVE-2015-3238).

Affected Products

VendorProductVersionsPlatforms
Mageiapam0 (affected), 1.1.8-7.2.mga4 (unaffected)
Mageiapam0 (affected), 1.1.8-10.1.mga5 (unaffected)

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›