It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered.
References
Link | Resource |
---|---|
https://aliceandbob.company/the-human-factor-in-an-economy-of-scale/ | |
https://github.com/CanonicalLtd/subiquity/commit/7db70650feaf513d7fb6f1ca07f2d670a0890613 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: canonical
Published: 2020-05-11T00:00:00
Updated: 2020-08-03T17:03:51
Reserved: 2020-04-20T00:00:00
Link: CVE-2020-11932
JSON object: View
NVD Information
Status : Modified
Published: 2020-05-13T01:15:12.130
Modified: 2020-08-03T18:15:11.710
Link: CVE-2020-11932
JSON object: View
Redhat Information
No data.
CWE