Fluid Attacks Database

Description

add_password in pam_radius_auth.c in pam_radius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy(). An attacker could send a crafted password to an application (loading the pam_radius library) and crash it. Arbitrary code execution might be possible, depending on the application, C library, compiler, and other factors.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	libpam-radius-auth	>=0 <1.4.0-3	1.4.0-3
debian 13	libpam-radius-auth	>=0 <1.4.0-3	1.4.0-3
debian 12	libpam-radius-auth	>=0 <1.4.0-3	1.4.0-3
debian 14	libpam-radius-auth	>=0 <1.4.0-3	1.4.0-3

Aliases

1. CVE-2015-95422. NVD-2015-95423. OSV-DEBIAN-2015-95424. OSV-2015-95425. SECURITY-TRACKER-CVE-2015-9542

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.