Bug 1214426 (CVE-2023-4413) - VUL-0: CVE-2023-4413: rkhunter: info leak via log files
Summary: VUL-0: CVE-2023-4413: rkhunter: info leak via log files
Status: NEW
Alias: CVE-2023-4413
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Minor
Target Milestone: ---
Assignee: Marcus Meissner
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/375792/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-08-21 07:44 UTC by Robert Frohl
Modified: 2023-08-21 08:51 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Frohl 2023-08-21 07:44:35 UTC 
CVE-2023-4413

A vulnerability was found in rkhunter Rootkit Hunter 1.4.4/1.4.6. It has been
classified as problematic. Affected is an unknown function of the file
/var/log/rkhunter.log. The manipulation leads to sensitive information in log
files. An attack has to be approached locally. The complexity of an attack is
rather high. The exploitability is told to be difficult. The exploit has been
disclosed to the public and may be used. The identifier of this vulnerability is
VDB-237516.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-4413
https://bugzilla.redhat.com/show_bug.cgi?id=2232821
https://www.cve.org/CVERecord?id=CVE-2023-4413
https://gist.github.com/MatheuZSecurity/16ef0219db8f85f49f945a25d5eb42d7
https://vuldb.com/?ctiid.237516
https://vuldb.com/?id.237516
https://youtu.be/etHt1TNAgs8
Comment 1 Robert Frohl 2023-08-21 07:46:29 UTC 
affects Factory and Backports