CVE-2024-37408

June 8, 2024, 2:15 p.m.

Product(s) Impacted

fprintd

through 1.94.3

Description

fprintd through 1.94.3 lacks a security attention mechanism, and thus unexpected actions might be authorized by "auth sufficient pam_fprintd.so" for Sudo.

Weaknesses

Date

Published: June 8, 2024, 2:15 p.m.

Last Modified: June 8, 2024, 2:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://gitlab.freedesktop.org/libfprint/fprintd/-/releases

cve@mitre.org

https://lists.freedesktop.org/archives/fprint/2024-May/001231.html

cve@mitre.org

https://www.openwall.com/lists/oss-security/2024/05/30/3

cve@mitre.org

CVE-2024-37408

Tags

Product(s) Impacted

Description

Weaknesses

Date

Status : Received

Source

References

Share