Suse · Opensuse Leap · CVE-2018-17953
**Name of the Vulnerable Software and Affected Versions**
openSUSE Leap version 15.0
SUSE Linux Enterprise version 15
**Description**
The issue is related to an incorrect variable in a SUSE specific patch for pam access rule matching in PAM, which could lead to pam access rules not being applied, resulting in a fail open scenario.
**Recommendations**
For openSUSE Leap version 15.0, update the PAM package to a version that includes the corrected patch.
For SUSE Linux Enterprise version 15, apply the appropriate patch or update to ensure pam access rules are correctly applied.