CVE-2023-4641

Summary

CVE	CVE-2023-4641
State	RESERVED
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-12-27 16:15:00 UTC
Updated	2024-01-04 17:06:00 UTC
Description	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Risk And Classification

Problem Types: CWE-287

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Redhat	Codeready Linux Builder	8.0	All	All	All
Application	Redhat	Codeready Linux Builder	9.0	All	All	All
Application	Redhat	Codeready Linux Builder For Arm64	8.0_aarch64	All	All	All
Application	Redhat	Codeready Linux Builder For Arm64	9.0_aarch64	All	All	All
Application	Redhat	Codeready Linux Builder For Ibm Z Systems	8.0_s390x	All	All	All
Application	Redhat	Codeready Linux Builder For Ibm Z Systems	9.0_s390x	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian	8.0_ppc64le	All	All	All
Application	Redhat	Codeready Linux Builder For Power Little Endian	9.0_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux	8.0	All	All	All
Operating System	Redhat	Enterprise Linux	9.0	All	All	All
Operating System	Redhat	Enterprise Linux For Arm 64	8.0	All	All	All
Operating System	Redhat	Enterprise Linux For Arm 64	9.0	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems	8.0_s390x	All	All	All
Operating System	Redhat	Enterprise Linux For Ibm Z Systems	9.0_s390x	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian	8.0_ppc64le	All	All	All
Operating System	Redhat	Enterprise Linux For Power Little Endian	9.0_ppc64le	All	All	All
Application	Shadow-maint	Shadow-utils	All	All	All	All

References

Reference	Source	Link	Tags
access.redhat.com/security/cve/CVE-2023-4641		access.redhat.com	Third Party Advisory
RHBZ#2215945		bugzilla.redhat.com	Issue Tracking
RHSA-2023:6632		access.redhat.com	Third Party Advisory
RHSA-2023:7112		access.redhat.com	Third Party Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

161088 Oracle Enterprise Linux Security Update for shadow-utils (ELSA-2023-6632)
161164 Oracle Enterprise Linux Security Update for shadow-utils (ELSA-2023-7112)
200119 Ubuntu Security Notification for shadow Vulnerability (USN-6640-1)
242327 Red Hat Update for shadow-utils (RHSA-2023:6632)
242437 Red Hat Update for shadow-utils (RHSA-2023:7112)
242854 Red Hat Update for shadow-utils (RHSA-2024:0417)
356145 Amazon Linux Security Advisory for shadow-utils : ALAS2-2023-2247
356551 Amazon Linux Security Advisory for shadow-utils : ALAS-2023-1873
356895 Amazon Linux Security Advisory for shadow-utils : ALAS2023-2023-450
356977 Amazon Linux Security Advisory for shadow-utils : AL2012-2023-461
379633 Alibaba Cloud Linux Security Update for shadow-utils (ALINUX3-SA-2024:0041)
673538 EulerOS Security Update for shadow (EulerOS-SA-2023-3350)
673650 EulerOS Security Update for shadow (EulerOS-SA-2023-3020)
673701 EulerOS Security Update for shadow (EulerOS-SA-2023-3196)
673795 EulerOS Security Update for shadow (EulerOS-SA-2023-3043)
673849 EulerOS Security Update for shadow-utils (EulerOS-SA-2024-1298)
673883 EulerOS Security Update for shadow (EulerOS-SA-2023-3231)
674083 EulerOS Security Update for shadow (EulerOS-SA-2023-3318)
755054 SUSE Enterprise Linux Security Update for shadow (SUSE-SU-2023:4025-1)
755055 SUSE Enterprise Linux Security Update for shadow (SUSE-SU-2023:4024-1)
755056 SUSE Enterprise Linux Security Update for shadow (SUSE-SU-2023:4023-1)
755064 SUSE Enterprise Linux Security Update for shadow (SUSE-SU-2023:4027-1)
941409 AlmaLinux Security Update for shadow-utils (ALSA-2023:6632)
941436 AlmaLinux Security Update for shadow-utils (ALSA-2023:7112)