CVE-2010-0015 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-0015 Interim 1 20 2024-10-24T02:04:23Z current 2021-05-30T12:49:52Z 2024-10-24T02:04:23Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-0015 nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6) 2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4GV6CUGE3JGTZZUYVACC3MINIWE4G3TS/#4GV6CUGE3JGTZZUYVACC3MINIWE4G3TS E-Mail link for SUSE-SA:2010:052 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 11 SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Desktop 11 SP1 SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Enterprise Server 11 SP1 for SAP Enterprise Search SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Server 11 SP1 LTSS SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Server for SAP Business All-in-One 11 SP1 glibc glibc-2.11.1-0.30.1 glibc-32bit-2.11.1-0.30.1 glibc-devel glibc-devel-2.11.1-0.30.1 glibc-devel-32bit-2.11.1-0.30.1 glibc-html glibc-html-2.11.1-0.30.1 glibc-i18ndata glibc-i18ndata-2.11.1-0.30.1 glibc-info glibc-info-2.11.1-0.30.1 glibc-locale glibc-locale-2.11.1-0.30.1 glibc-locale-32bit-2.11.1-0.30.1 glibc-profile glibc-profile-2.11.1-0.30.1 glibc-profile-32bit-2.11.1-0.30.1 nscd nscd-2.11.1-0.30.1 glibc-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-32bit-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-devel-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-devel-32bit-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-html-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-i18ndata-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-info-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-locale-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-locale-32bit-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-profile-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-profile-32bit-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA nscd-2.11.1-0.30.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc as a component of SUSE Linux Enterprise Desktop 11 glibc as a component of SUSE Linux Enterprise Desktop 11 SP1 glibc as a component of SUSE Linux Enterprise Enterprise Server 11 SP1 for SAP Enterprise Search glibc as a component of SUSE Linux Enterprise Server 11 glibc-devel as a component of SUSE Linux Enterprise Server 11 glibc-html as a component of SUSE Linux Enterprise Server 11 glibc-i18ndata as a component of SUSE Linux Enterprise Server 11 glibc-info as a component of SUSE Linux Enterprise Server 11 glibc-locale as a component of SUSE Linux Enterprise Server 11 glibc-profile as a component of SUSE Linux Enterprise Server 11 nscd as a component of SUSE Linux Enterprise Server 11 glibc as a component of SUSE Linux Enterprise Server 11 SP1 glibc as a component of SUSE Linux Enterprise Server 11 SP1 LTSS glibc as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata glibc as a component of SUSE Linux Enterprise Server for SAP Business All-in-One 11 SP1 glibc as a component of SUSE Linux Enterprise Software Development Kit 11 glibc as a component of SUSE Linux Enterprise Software Development Kit 11 SP1 nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6) 2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function. CVE-2010-0015 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-32bit-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-devel-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-devel-32bit-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-html-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-i18ndata-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-info-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-locale-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-locale-32bit-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-profile-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-profile-32bit-2.11.1-0.30.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:nscd-2.11.1-0.30.1 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P