{"id":"AZL-26247","summary":"CVE-2023-29383 affecting package shadow-utils for versions less than 4.9-13","details":"In Shadow 4.13, it is possible to inject control characters into fields provided to the SUID program chfn (change finger). Although it is not possible to exploit this directly (e.g., adding a new user fails because \\n is in the block list), it is possible to misrepresent the /etc/passwd file when viewed. Use of \\r manipulations and Unicode characters to work around blocking of the : character make it possible to give the impression that a new user has been added. In other words, an adversary may be able to convince a system administrator to take the system offline (an indirect, social-engineered denial of service) by demonstrating that \"cat /etc/passwd\" shows a rogue user account.","modified":"2026-04-01T05:08:18.768415Z","published":"2023-04-14T22:15:07Z","upstream":["CVE-2023-29383"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-29383"}],"affected":[{"package":{"name":"shadow-utils","ecosystem":"Azure Linux:2","purl":"pkg:rpm/azure-linux/shadow-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.9-13"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-26247.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}]}