Unrated severityNVD Advisory· Published Nov 11, 2020· Updated Sep 16, 2024
accountsservice .pam_environment infinite loop
CVE-2020-16127
Description
An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled ~/.pam_environment files, allowing an infinite loop if /dev/zero is symlinked to this location.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <0.6.55-0ubuntu13.2
- Freedesktop/accountsservicev5Range: 0.6.35-0ubuntu7.3
Patches
Vulnerability mechanics
References
1- securitylab.github.com/advisories/GHSL-2020-187-accountsservice-drop-privs-DOSmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.