An improper enter validation allows an unauthenticated attacker to achieve distant command execution on the impacted PAM system by sending a specially crafted HTTP ask for.From the Linux kernel, the subsequent vulnerability has been solved: ima: repair reference leak in asymmetric_verify() Don't leak a reference to The real key if its algorithm is