Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libpam4j@1.4-2%2Bdeb8u1
purl pkg:deb/debian/libpam4j@1.4-2%2Bdeb8u1
Next non-vulnerable version 1.4-2+deb9u1
Latest non-vulnerable version 1.4-2+deb9u1
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-tj32-sye9-gqfe
Aliases:
CVE-2017-12197
GHSA-x9rg-q5fx-fx66
It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information.
1.4-2+deb9u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-tj32-sye9-gqfe It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security restrictions and possibly access sensitive information. CVE-2017-12197
GHSA-x9rg-q5fx-fx66

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T14:13:34.225327+00:00 Debian Oval Importer Affected by VCID-tj32-sye9-gqfe https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T13:36:53.833570+00:00 Debian Oval Importer Fixing VCID-tj32-sye9-gqfe https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-11T14:02:06.524171+00:00 Debian Oval Importer Affected by VCID-tj32-sye9-gqfe https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:25:38.268470+00:00 Debian Oval Importer Fixing VCID-tj32-sye9-gqfe https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-07T22:36:27.719631+00:00 Debian Oval Importer Affected by VCID-tj32-sye9-gqfe https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:01:25.837039+00:00 Debian Oval Importer Fixing VCID-tj32-sye9-gqfe https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0