pam_setquota.c in the pam_setquota module prior to 2020-05-29 for Linux-PAM allows local malicious users to set their quota on an arbitrary filesystem, in certain situations where the attacker's home directory is a FUSE filesystem mounted under /home.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pam setquota project pam setquota |