{"id":"CVE-2013-7041","details":"The pam_userdb module for Pam uses a case-insensitive method to compare hashed passwords, which makes it easier for attackers to guess the password via a brute force attack.","modified":"2026-04-16T01:40:06.419333193Z","published":"2014-05-08T14:29:12Z","withdrawn":"2026-01-27T04:11:52.085808Z","related":["SUSE-SU-2016:1645-1"],"references":[{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2935-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2935-2"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2935-3"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201605-05"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1038555"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2013/12/09/16"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2013/12/09/5"},{"type":"WEB","url":"http://www.securityfocus.com/bid/64180"},{"type":"WEB","url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731368"}],"schema_version":"1.7.3"}