Joomla! Issue Tracker | Joomla! CMS #14828 - xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized

Closed
21 Mar 2017
Medium
Build: all
# 14828

road2one
21 Mar 2017

Steps to reproduce the issue

joomla! -- joomla!

Expected result

xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass. 2017-03-17

Actual result

System information (as much as possible)

Additional comments

road2one - open - 21 Mar 2017

joomla-cms-bot - labeled - 21 Mar 2017

brianteeman - comment - 21 Mar 2017

Closed - please follow the instructions Report security issues to the Joomla! Security Strike Team (JSST) at security@joomla.org or use the JSST contact form. Please do not use the public tracker for security issues.

brianteeman - change - 21 Mar 2017

Status	New	⇒	Closed
Closed_Date	0000-00-00 00:00:00	⇒	2017-03-21 13:36:56
Closed_By		⇒	brianteeman

brianteeman - close - 21 Mar 2017

Add a Comment

Older
Newer

Joomla! Issue Tracker - CMS