Description
login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server.
Affected products
- slackware / slackware_linux3.1 – 3.1
- slackware / slackware_linux3.2 – 3.2
- slackware / slackware_linux3.3 – 3.3
- slackware / slackware_linux3.4 – 3.4
- slackware / slackware_linux3.5 – 3.5