Stack-based Buffer Overflow in FascistGecosUser Function in Cracklib

Stack-based Buffer Overflow in FascistGecosUser Function in Cracklib

CVE-2016-6318 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service (application crash) or gain privileges via a long GECOS field, involving longbuffer.

Learn more about our Cis Benchmark Audit For Suse Linux Enterprise Server.