UBUNTU-CVE-2024-56433
- Source
- https://ubuntu.com/security/CVE-2024-56433
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-56433.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2024-56433
- Upstream
- Published
- 2024-12-26T09:15:00Z
- Modified
- 2025-10-24T05:15:07Z
- Severity
-
- 3.6 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
- Ubuntu - low
- Summary
- [none]
- Details
-
shadow-utils (aka shadow) 4.4 through 4.17.0 establishes a default /etc/subuid behavior (e.g., uid 100000 through 165535 for the first user account) that can realistically conflict with the uids of users defined on locally administered networks, potentially leading to account takeover, e.g., by leveraging newuidmap for access to an NFS home directory (or same-host resources in the case of remote logins by these local network users). NOTE: it may also be argued that system administrators should not have assigned uids, within local networks, that are within the range that can occur in /etc/subuid.
- References
Affected packages
Ubuntu:20.04:LTS
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.8.1-1ubuntu5.20.04.5?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:4.*
1:4.5-1.1ubuntu4
1:4.8-1ubuntu1
1:4.8.1-1ubuntu1
1:4.8.1-1ubuntu2
1:4.8.1-1ubuntu3
1:4.8.1-1ubuntu4
1:4.8.1-1ubuntu5
1:4.8.1-1ubuntu5.20.04
1:4.8.1-1ubuntu5.20.04.1
1:4.8.1-1ubuntu5.20.04.2
1:4.8.1-1ubuntu5.20.04.3
1:4.8.1-1ubuntu5.20.04.4
1:4.8.1-1ubuntu5.20.04.5
Ecosystem specific
{
"binaries": [
{
"binary_name": "login",
"binary_version": "1:4.8.1-1ubuntu5.20.04.5"
},
{
"binary_name": "passwd",
"binary_version": "1:4.8.1-1ubuntu5.20.04.5"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.8.1-1ubuntu5.20.04.5"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:22.04:LTS
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.8.1-2ubuntu2.2?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:4.*
1:4.8.1-1ubuntu9
1:4.8.1-1ubuntu10
1:4.8.1-2ubuntu1
1:4.8.1-2ubuntu2
1:4.8.1-2ubuntu2.1
1:4.8.1-2ubuntu2.2
Ecosystem specific
{
"binaries": [
{
"binary_name": "login",
"binary_version": "1:4.8.1-2ubuntu2.2"
},
{
"binary_name": "passwd",
"binary_version": "1:4.8.1-2ubuntu2.2"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.8.1-2ubuntu2.2"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:24.04:LTS
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.13+dfsg1-4ubuntu3.2?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:4.*
1:4.13+dfsg1-1ubuntu1
1:4.13+dfsg1-3ubuntu1
1:4.13+dfsg1-4ubuntu1
1:4.13+dfsg1-4ubuntu3
1:4.13+dfsg1-4ubuntu3.2
Ecosystem specific
{
"binaries": [
{
"binary_name": "libsubid-dev",
"binary_version": "1:4.13+dfsg1-4ubuntu3.2"
},
{
"binary_name": "libsubid4",
"binary_version": "1:4.13+dfsg1-4ubuntu3.2"
},
{
"binary_name": "login",
"binary_version": "1:4.13+dfsg1-4ubuntu3.2"
},
{
"binary_name": "passwd",
"binary_version": "1:4.13+dfsg1-4ubuntu3.2"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.13+dfsg1-4ubuntu3.2"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:25.04
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.16.0-7ubuntu1?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "libsubid-dev",
"binary_version": "1:4.16.0-7ubuntu1"
},
{
"binary_name": "libsubid5",
"binary_version": "1:4.16.0-7ubuntu1"
},
{
"binary_name": "login.defs",
"binary_version": "1:4.16.0-7ubuntu1"
},
{
"binary_name": "passwd",
"binary_version": "1:4.16.0-7ubuntu1"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.16.0-7ubuntu1"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:25.10
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.17.4-2ubuntu2?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "libsubid-dev",
"binary_version": "1:4.17.4-2ubuntu2"
},
{
"binary_name": "libsubid5",
"binary_version": "1:4.17.4-2ubuntu2"
},
{
"binary_name": "login.defs",
"binary_version": "1:4.17.4-2ubuntu2"
},
{
"binary_name": "passwd",
"binary_version": "1:4.17.4-2ubuntu2"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.17.4-2ubuntu2"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:Pro:14.04:LTS
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.1.5.1-1ubuntu9.5+esm4?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:4.*
1:4.1.5.1-1ubuntu6
1:4.1.5.1-1ubuntu7
1:4.1.5.1-1ubuntu8
1:4.1.5.1-1ubuntu9
1:4.1.5.1-1ubuntu9.1
1:4.1.5.1-1ubuntu9.2
1:4.1.5.1-1ubuntu9.4
1:4.1.5.1-1ubuntu9.5
1:4.1.5.1-1ubuntu9.5+esm1
1:4.1.5.1-1ubuntu9.5+esm2
1:4.1.5.1-1ubuntu9.5+esm3
1:4.1.5.1-1ubuntu9.5+esm4
Ecosystem specific
{
"binaries": [
{
"binary_name": "login",
"binary_version": "1:4.1.5.1-1ubuntu9.5+esm4"
},
{
"binary_name": "passwd",
"binary_version": "1:4.1.5.1-1ubuntu9.5+esm4"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.1.5.1-1ubuntu9.5+esm4"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:Pro:16.04:LTS
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.2-3.1ubuntu5.5+esm4?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:4.*
1:4.1.5.1-1.1ubuntu7
1:4.2-3.1ubuntu1
1:4.2-3.1ubuntu2
1:4.2-3.1ubuntu3
1:4.2-3.1ubuntu4
1:4.2-3.1ubuntu5
1:4.2-3.1ubuntu5.2
1:4.2-3.1ubuntu5.3
1:4.2-3.1ubuntu5.4
1:4.2-3.1ubuntu5.5+esm1
1:4.2-3.1ubuntu5.5+esm2
1:4.2-3.1ubuntu5.5+esm3
1:4.2-3.1ubuntu5.5+esm4
Ecosystem specific
{
"binaries": [
{
"binary_name": "login",
"binary_version": "1:4.2-3.1ubuntu5.5+esm4"
},
{
"binary_name": "passwd",
"binary_version": "1:4.2-3.1ubuntu5.5+esm4"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.2-3.1ubuntu5.5+esm4"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}Ubuntu:Pro:18.04:LTS
shadow
Package
- Name
- shadow
- Purl
- pkg:deb/ubuntu/shadow@1:4.5-1ubuntu2.5+esm1?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:4.*
1:4.2-3.2ubuntu4
1:4.5-1ubuntu1
1:4.5-1ubuntu2
1:4.5-1ubuntu2.2
1:4.5-1ubuntu2.3
1:4.5-1ubuntu2.4
1:4.5-1ubuntu2.5
1:4.5-1ubuntu2.5+esm1
Ecosystem specific
{
"binaries": [
{
"binary_name": "login",
"binary_version": "1:4.5-1ubuntu2.5+esm1"
},
{
"binary_name": "passwd",
"binary_version": "1:4.5-1ubuntu2.5+esm1"
},
{
"binary_name": "uidmap",
"binary_version": "1:4.5-1ubuntu2.5+esm1"
}
],
"priority_reason": "Needs administrator to have assigned conflicting UIDs"
}