Name of the Vulnerable Software and Affected Versions util-linux (affected versions not specified) shadow (affected versions not specified)

Description The issue involves multiple problems with util-linux and shadow, including ignored PATH settings in /etc/default/su, outdated pam files, and a segfault in useradd during password inactivity period setting. Other issues include incorrect behavior with pseudofs and netfs, and problems with reading login.defs values. There is also hardening for su wrappers.

Recommendations For util-linux, update to a version that includes the fixes for the mentioned issues. For shadow, update to a version that includes the fixes for the mentioned issues. As a temporary workaround, consider restricting access to su wrappers until a patch is available. Restrict access to the vulnerable pam files to minimize the risk of exploitation. Avoid using the useradd command with password inactivity period settings until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.