Bug 663334 (CVE-2011-0002) - VUL-0: CVE-2011-0002: libuser creates LDAP users with a default password (CVE-2011-0002)
Summary: VUL-0: CVE-2011-0002: libuser creates LDAP users with a default password (CVE...
Status: VERIFIED WONTFIX
Alias: CVE-2011-0002
Product: SUSE Security Incidents
Classification: Novell Products
Component: General (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Ruediger Oertel
QA Contact: E-mail List
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2011-01-10 10:32 UTC by Sebastian Krahmer
Modified: 2021-01-01 10:36 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
libuser-0.56.18-default-pw.patch (12.00 KB, patch)
2011-01-10 10:35 UTC, Sebastian Krahmer 		Details | Diff
libuser-0.56.18-ldap-tests.patch (866 bytes, patch)
2011-01-10 10:36 UTC, Sebastian Krahmer 		Details | Diff
libuser.spec.patch (1.67 KB, patch)
2011-01-10 10:37 UTC, Sebastian Krahmer 		Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sebastian Krahmer 2011-01-10 10:32:31 UTC 
AFAIK only valid for Moblin2.0 for us. However.

vendor-sec mail attached in next comment.
Comment 2 Sebastian Krahmer 2011-01-10 10:35:47 UTC 
Created attachment 407514 [details]
libuser-0.56.18-default-pw.patch

.
Comment 3 Sebastian Krahmer 2011-01-10 10:36:44 UTC 
Created attachment 407515 [details]
libuser-0.56.18-ldap-tests.patch

.
Comment 4 Sebastian Krahmer 2011-01-10 10:37:09 UTC 
Created attachment 407516 [details]
libuser.spec.patch

.
Comment 5 Sebastian Krahmer 2011-01-10 14:42:38 UTC 
Just for Moblin, so closing as WONTFIX.