Ubuntu Security Notice 964-1 – Matt Weatherford discovered that Likewise Open did not correctly check password expiration for the local-provider account. A local attacker could exploit this to log into a system they would otherwise not have access to.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/92186/USN-964-1.txt
Source: https://packetstormsecurity.com/files/92186/Ubuntu-Security-Notice-964-1.html