VULHUB ™

Calife is reportedly prone to a locally exploitable heap overrun vulnerability. This issue is due to insufficient bounds checking of password input. If this issue was successfully exploited to execute arbitrary code, it could potentially allow an unprivileged local user to gain root access. It has been reported that this issue may actually be indicative of a more serious problem in the glibc implementation of the getpass() function. This has not been confirmed. This BID will be updated as more information is provided.

Calife is reportedly prone to a locally exploitable heap overrun vulnerability. This issue is due to insufficient bounds checking of password input. If this issue was successfully exploited to execute arbitrary code, it could potentially allow an unprivileged local user to gain root access. It has been reported that this issue may actually be indicative of a more serious problem in the glibc implementation of the getpass() function. This has not been confirmed. This BID will be updated as more information is provided.