CVE-2024-37408 Information

Description

fprintd through 1.94.3 lacks a security attention mechanism and thus unexpected actions might be authorized by uth sufficient pam_fprintd.so\ for Sudo.

Reference

https://www.openwall.com/lists/oss-security/2024/05/30/3 https://lists.freedesktop.org/archives/fprint/2024-May/001231.html https://gitlab.freedesktop.org/libfprint/fprintd/-/releases