openEuler update for shadow

1) Improper Neutralization of Special Elements in Output Used by a Downstream Component

EUVDB-ID: #VU75589

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-29383

CWE-ID: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Exploit availability: No

Description

The vulnerability allows a local user to inject arbitrary code.

The vulnerability exists due to an input validation error when processing fields provided to the SUID program chfn (change finger). A local user can inject and execute arbitrary code or misrepresent existing files.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 22.03 LTS SP1

shadow-help: before 4.8.1-7

shadow-debugsource: before 4.8.1-7

shadow-debuginfo: before 4.8.1-7

shadow: before 4.8.1-7

CPE2.3

• cpe:2.3:o:openeuler:openeuler:20.03:LTS SP1:*:*:*:*:*:*
• cpe:2.3:o:openeuler:openeuler:20.03:LTS SP3:*:*:*:*:*:*
• cpe:2.3:o:openeuler:openeuler:22.03:LTS:*:*:*:*:*:*
• cpe:2.3:a:openeuler:shadow-help:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:shadow-debugsource:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:shadow-debuginfo:*:*:*:*:*:openeuler:*:*
• cpe:2.3:a:openeuler:shadow:*:*:*:*:*:openeuler:*:*

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1258

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.