{
  "modified": "2025-08-09T19:01:27Z",
  "published": "2011-02-19T01:00:03Z",
  "id": "CVE-2011-0721",
  "details": "Multiple CRLF injection vulnerabilities in (1) chfn and (2) chsh in shadow 1:4.1.4 allow local users to add new users or groups to /etc/passwd via the GECOS field.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/42505"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/43345"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.debian.org/security/2011/dsa-2164"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.ubuntu.com/usn/USN-1065-1"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.vupen.com/english/advisories/2011/0396"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.vupen.com/english/advisories/2011/0398"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.vupen.com/english/advisories/2011/0773"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/70895"
    },
    {
      "type": "WEB",
      "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2011\u0026m=slackware-security.380014"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/46426"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65564"
    }
  ]
}