This security bulletin contains one medium risk vulnerability.
The vulnerability allows a remote attacker to bypass authorization process.
The vulnerability exists due to an error within the pam_access.so module in Linux-PAM package, which does not correctly restrict login if a user tries to connect from an IP address that is not resolvable via DNS. A remote attacker can bypass authorization process and login to the system via SSH from IP addresses that were not allowed to connect from.
Install updates from vendor's website.Vulnerable software versions
linux-pam: 1.0.0 - 1.5.1Fixed software versions
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?