Pam: libpam: libpam vulnerable to read hashed password
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications.
Affected products
- *
- <1.6.0
Matching in nixpkgs
pkgs.pam
Pluggable Authentication Modules, a flexible mechanism for authenticating user
pkgs.ipam
Cli based IPAM written in Go with PowerDNS support
pkgs.opam
Package manager for OCaml
pkgs.paml
Phylogenetic Analysis by Maximum Likelihood (PAML)
pkgs.dspam
Community Driven Antispam Filter
pkgs.pamix
Pulseaudio terminal mixer
pkgs.rspamd
Advanced spam filtering system
pkgs.openpam
Open source PAM library that focuses on simplicity, correctness, and cleanliness
pkgs.pam_p11
Authentication with PKCS#11 modules
pkgs.pam_u2f
PAM module for allowing authentication with a U2F device
pkgs.pamixer
Pulseaudio command line mixer
pkgs.dopamine
Audio player that keeps it simple
-
nixos-unstable 3.0.0-preview.35
- nixpkgs-unstable 3.0.0-preview.35
- nixos-unstable-small 3.0.0-preview.35
pkgs.pam_krb5
PAM module allowing PAM-aware applications to authenticate users by performing an AS exchange with a Kerberos KDC
pkgs.pam_rssh
PAM module for authenticating via ssh-agent, written in Rust
pkgs.pam_ussh
PAM module to authenticate using SSH certificates
pkgs.linux-pam
Pluggable Authentication Modules, a flexible mechanism for authenticating user
pkgs.ncpamixer
Terminal mixer for PulseAudio inspired by pavucontrol
pkgs.opam2json
convert opam file syntax to JSON
pkgs.pam_dp9ik
dp9ik pam module
pkgs.pam_gnupg
Unlock GnuPG keys on login
pkgs.pam_mount
PAM module to mount volumes for a user session
pkgs.pam_mysql
PAM authentication module against a MySQL database
-
nixos-unstable 1.0.0-beta2
- nixpkgs-unstable 1.0.0-beta2
- nixos-unstable-small 1.0.0-beta2
pkgs.pam_pgsql
Support to authenticate against PostgreSQL for PAM-enabled appliations
-
nixos-unstable 2020-05-05
- nixpkgs-unstable 2020-05-05
- nixos-unstable-small 2020-05-05
pkgs.pamtester
Utility program to test the PAM facility
pkgs.pam_ccreds
PAM module to locally authenticate using an enterprise identity when the network is unavailable
pkgs.pam_mktemp
PAM for login service to provide per-user private directories
pkgs.pam_tmpdir
PAM module for creating safe per-user temporary directories
pkgs.yubico-pam
Yubico PAM module
pkgs.xtrlock-pam
PAM based X11 screen locker
-
nixos-unstable 3.4-post-20150909
- nixpkgs-unstable 3.4-post-20150909
- nixos-unstable-small 3.4-post-20150909
pkgs.apparmor-pam
Mandatory access control system - PAM service
pkgs.opam-publish
Tool to ease contributions to opam repositories
pkgs.pam-reattach
Reattach to the user's GUI session on macOS during authentication (for Touch ID support in tmux)
pkgs.spamassassin
Open-Source Spam Filter
pkgs.nss_pam_ldapd
LDAP identity and authentication for NSS/PAM
pkgs.libpam-wrapper
Wrapper for testing PAM modules
pkgs.opam-installer
Handle (un)installation from opam install files
pkgs.pam-honeycreds
PAM module that sends warnings when fake passwords are used
pkgs.rspamd-trainer
Grabs messages from a spam mailbox via IMAP and feeds them to Rspamd for training
-
nixos-unstable 2023-11-27
- nixpkgs-unstable 2023-11-27
- nixos-unstable-small 2023-11-27
pkgs.emacsPackages.opam
None
-
nixos-unstable 20150719.1220
- nixpkgs-unstable 20150719.1220
- nixos-unstable-small 20150719.1220
pkgs.pam_ssh_agent_auth
PAM module for authentication through the SSH agent
pkgs.rubyPackages.rpam2
None
-
nixos-unstable -
- nixos-unstable-small rpam2-4.0.2
pkgs.decode-spam-headers
Script that helps you understand why your E-Mail ended up in Spam
-
nixos-unstable 2022-09-22-unreleased
- nixpkgs-unstable 2022-09-22-unreleased
- nixos-unstable-small 2022-09-22-unreleased
pkgs.haskellPackages.pam
Haskell binding for C PAM API
pkgs.luaPackages.lua-pam
Lua module for PAM authentication
-
nixos-unstable 2015-07-03
- nixpkgs-unstable 2015-07-03
- nixos-unstable-small 2015-07-03
pkgs.google-authenticator
Two-step verification, with pam module
pkgs.emacsPackages.no-spam
None
-
nixos-unstable 20190724.1854
- nixpkgs-unstable 20190724.1854
- nixos-unstable-small 20190724.1854
pkgs.lua51Packages.lua-pam
Lua module for PAM authentication
-
nixos-unstable 2015-07-03
- nixpkgs-unstable 2015-07-03
- nixos-unstable-small 2015-07-03
pkgs.lua52Packages.lua-pam
Lua module for PAM authentication
-
nixos-unstable 2015-07-03
- nixos-unstable-small 2015-07-03
pkgs.lua53Packages.lua-pam
Lua module for PAM authentication
-
nixos-unstable 2015-07-03
- nixpkgs-unstable 2015-07-03
- nixos-unstable-small 2015-07-03
pkgs.emacsPackages.pamparam
None
-
nixos-unstable 20210105.1513
- nixpkgs-unstable 20210105.1513
- nixos-unstable-small 20210105.1513
pkgs.libsForQt5.kwallet-pam
None
pkgs.rubyPackages_3_1.rpam2
None
-
nixos-unstable rpam2-4.0.2
- nixpkgs-unstable rpam2-4.0.2
- nixos-unstable-small rpam2-4.0.2
pkgs.rubyPackages_3_2.rpam2
None
-
nixos-unstable rpam2-4.0.2
- nixpkgs-unstable rpam2-4.0.2
- nixos-unstable-small rpam2-4.0.2
pkgs.rubyPackages_3_3.rpam2
None
-
nixos-unstable rpam2-4.0.2
- nixpkgs-unstable rpam2-4.0.2
- nixos-unstable-small rpam2-4.0.2
pkgs.rubyPackages_3_4.rpam2
None
-
nixos-unstable rpam2-4.0.2
- nixpkgs-unstable rpam2-4.0.2
- nixos-unstable-small rpam2-4.0.2
pkgs.kdePackages.kwallet-pam
PAM Integration with KWallet - Unlock KWallet when you login
pkgs.opensmtpd-filter-rspamd
OpenSMTPD filter integration for the Rspamd daemon
pkgs.python311Packages.pamqp
RabbitMQ Focused AMQP low-level library
pkgs.python312Packages.pamqp
RabbitMQ Focused AMQP low-level library
pkgs.sbclPackages.cl-xmlspam
None
-
nixos-unstable 20101006-http
- nixpkgs-unstable 20101006-http
- nixos-unstable-small 20101006-http
pkgs.python311Packages.pamela
PAM interface using ctypes
pkgs.python312Packages.pamela
PAM interface using ctypes
pkgs.plasma5Packages.kwallet-pam
None
pkgs.python311Packages.pypamtest
Wrapper for testing PAM modules
pkgs.python312Packages.pypamtest
Wrapper for testing PAM modules
pkgs.python311Packages.python-pam
Python pam module
pkgs.python312Packages.python-pam
Python pam module
pkgs.emacsPackages.opam-switch-mode
None
-
nixos-unstable 20230802.917
- nixpkgs-unstable 20230802.917
- nixos-unstable-small 20230802.917
pkgs.matrix-synapse-plugins.matrix-synapse-pam
PAM auth provider for the Synapse Matrix server
pkgs.matrix-synapse-plugins.matrix-synapse-mjolnir-antispam
AntiSpam / Banlist plugin to be used with mjolnir
Package maintainers
-
@ju1m Julien Moutinho <julm+nixpkgs@sourcephile.fr>
-
@thoughtpolice Austin Seipp <aseipp@pobox.com>
-
@LordGrimmauld Sören Bender <soeren@benjos.de>
-
@Guanran928 Guanran Wang <guanran928@outlook.com>
-
@abbradar Nikolay Amiantov <ab@fmap.me>
-
@aneeshusa Aneesh Agrawal <aneeshusa@gmail.com>
-
@K900 Ilya K. <me@0upti.me>
-
@ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru>
-
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
-
@NickCao Nick Cao <nickcao@nichi.co>
-
@LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev>
-
@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
-
@mjm Matt Moriarity <matt@mattmoriarity.com>
-
@nyanloutre Paul Trehiou <paul@nyanlout.re>
-
@traxys Quentin Boyer <quentin+dev@familleboyer.net>
-
@jojosch Johannes Schleifenbaum <johannes@js-webcoding.de>
-
@tanneberger Tassilo Tanneberger <revol-xut@protonmail.com>
-
@astro Astro <astro@spaceboyz.net>
-
@gshipunov Grigory Shipunov <blame@oxapentane.com>
-
@niols Nicolas Jeannerod <niols@niols.fr>
-
@balsoft Alexander Bantyev <balsoft75@gmail.com>
-
@matthewbauer Matthew Bauer <mjbauer95@gmail.com>
-
@Flakebi Sebastian Neubauer <flakebi@t-online.de>
-
@h7x4 h7x4 <h7x4@nani.wtf>
-
@lockejan Jan Schmitt <git@smittie.de>
-
@majiru Jacob Moody <moody@posixcafe.org>
-
@mtreca Maxime Tréca <maxime.treca@gmail.com>
-
@wladmis Wladmis <dev@wladmis.org>
-
@NetaliDev Jennifer Graul <me@netali.de>
-
@sbourdeauducq Sébastien Bourdeauducq <sb@m-labs.hk>
-
@Kranzes Ilan Joselevich <personal@ilanjoselevich.com>
-
@peterhoeg Peter Hoeg <peter@hoeg.com>
-
@philandstuff Philip Potter <philip.g.potter@gmail.com>
-
@lukegb Luke Granger-Brown <nix@lukegb.com>
-
@ericsagnes Eric Sagnes <eric.sagnes@gmail.com>
-
@thiagokokada Thiago K. Okada <thiagokokada@gmail.com>
-
@dotlambda Robert Schütz <rschuetz17@gmail.com>
-
@mkg20001 Maciej Krüger <mkg20001+nix@gmail.com>
-
@globin Robin Gloster <mail@glob.in>
-
@avnik Alexander V. Nikolaev <avn@avnik.info>
-
@nlewo Antoine Eiche <lewo@abesis.fr>
-
@fpletz Franz Pletz <fpletz@fnordicwalking.de>
-
@onny Jonas Heinrich <onny@project-insanity.org>
-
@Uthar Kasper Gałkowski <galkowskikasper@gmail.com>
-
@lukego Luke Gorrie <luke@snabb.co>
-
@nagy Daniel Nagy <danielnagy@posteo.de>
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
-
@hraban Hraban Luyat <hraban@0brg.net>
-
@qknight Joachim Schiele <js@lastlog.de>
-
@alyssais Alyssa Ross <hi@alyssa.is>
-
@ondt Ondrej Telka <nix@ondt.dev>