CVE-2016-20014: In pam_tacplus.c in pam_tacplus before 1.4.1, pam_sm_acct_mgmt does no ...

Severity: Critical

CVSS Score: 9.8

In pam_tacplus.c in pam_tacplus before 1.4.1, pam_sm_acct_mgmt does not zero out the arep data structure.