The vulnerability enables a malicious minimal-privileged PAM consumer to access information about other PAM people and their team memberships. In the Linux kernel, the subsequent vulnerability has long been resolved: https://smmpro.pk/privacy-policy