CVE-2020-11932

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-11932

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-11932.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-11932

Downstream

UBUNTU-CVE-2020-11932

Published

2020-05-13T01:15:12.130Z

Modified

2026-03-14T09:55:54.790942Z

Severity

2.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

It was discovered that the Subiquity installer for Ubuntu Server logged the LUKS full disk encryption password if one was entered.

References

Affected packages

Git / github.com/canonical/subiquity

Affected ranges

Type: GIT
Repo: https://github.com/canonical/subiquity
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

7db70650feaf513d7fb6f1ca07f2d670a0890613

Type

GIT

Repo

https://github.com/canonicalltd/subiquity

Events

Introduced

Fixed

7db70650feaf513d7fb6f1ca07f2d670a0890613

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "20.05.2"
        }
    ]
}

Affected versions

0.*

0.0.10

0.0.11

0.0.12

0.0.13

0.0.17.xenial

0.0.21

0.0.22

0.0.23

0.0.24

0.0.24.1

0.0.25

0.0.26

0.0.27

0.0.28

0.0.29

0.0.9

19.*

19.04.3

19.04.4

19.04.5

19.06.1

19.07.1

19.07.2

19.07.3

19.08.1

19.09.1

19.10.1

19.10.2

19.11.1

19.12.1

19.12.1.1

19.12.2

20.*

20.03.1

20.03.2

20.03.3

20.04.1

20.04.2

20.04.3

20.05.1

Other

demo_1

ubuntu-19.*

ubuntu-19.04.1

ubuntu-19.04.2

v0.*

v0.0.3

v0.0.4

v0.0.5

v0.0.7

v0.0.8

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-11932.json"