Major Linux Distros Are Exposed To A Root-Level Security Threat, Update ASAP

Linux server administrators, it's time to get your patch on. The boffins at Qualys, a security firm well known for its excellent SSL configuration tester, found a pair of security vulnerabilities that combined can grant any unprivileged user instant root (administrator) access.

The first vulnerability in the story is the least impactful, but is key to the root-access combo. CVE-2025-6018 describes a misconfiguration in the default settings for the PAM (Pluggable Authentication Module) framework on openSUSE Leap 15 and SUSE Linux Enterprise 15. The issue revolves around the "allow_active" flag being erroneously set and allowing non-local unprivileged users to perform some elevated-privilege actions -- in other words, just SSH into the machine, and you'll likely be able to mount/unmount volumes, shutdown and reboot the machine, etc.

That's already no ideal, but it gets much worse when CVE-2025-6019 gets involved. This is the big one, as it points ...