The vulnerability allows a destructive lower-privileged PAM person to access information regarding other PAM users and their group memberships.
In the Linux kernel, the following vulnerability has been fixed: mtd: https://bookmark-template.com/story19997655/2smr-no-further-a-mystery