Shundhammer

**Name of the Vulnerable Software and Affected Versions** libstorage, libstorage-ng, and yast-storage (affected versions not specified) **Description** The issue allows local users to potentially obtain sensitive information by reading a temporary file on disk. This is because passphrases for encrypted storage devices are improperly stored in this file. The file in question is demonstrated by the path /tmp/libstorage-XXXXXX/pwdf. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.