View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-17953 severity moderate: SUSE including 515 source package names (0.0.17-1.1:pam-1.3.0-6.6.1, 0.1.0:pam-1.3.0-6.6.1, …), 1015 product×package rows across 599 product lines (Container bci/bci-init, Container bci/bci-sle15-kernel-module-devel, … (599 product lines)): Fixed 776, Known Affected 157, Known Not Affected 82.
A incorrect variable in a SUSE specific patch for pam_access rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pam_access rules not being applied (fail open).