[UCI-Linux] [SECURITY] Fedora Core 3 Update: pam-0.77-66.2.13

Mike Iglesias iglesias at draco.acs.uci.edu
Wed Oct 26 11:25:22 PDT 2005

From: "Tomas Mraz" <tmraz at redhat.com>
To: fedora-announce-list at redhat.com
Date: Wed, 26 Oct 2005 13:24:07 -0400
Subject: [SECURITY] Fedora Core 3 Update: pam-0.77-66.2.13

Fedora Update Notification

Product     : Fedora Core 3
Name        : pam
Version     : 0.77                      
Release     : 66.2.13                  
Summary     : A security tool which provides authentication for applications.
Description :
PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policy without
having to recompile programs that handle authentication.

Update Information:

This update fixes a security bug in unix_chkpwd allowing
brute force attacks against passwords in /etc/shadow by a
regular user when SELinux is enabled.

* Wed Oct 26 2005 Tomas Mraz <tmraz at redhat.com> 0.77-66.2.13
- fixed CAN-2005-2977 unix_chkpwd should skip user verification only if
  run as root (#168181)
- support no tty in pam_access (#170467)
- support unlimited limits (#171546)
- allow larger buffer for getgr* functions
- flush input first, then print the prompt in misc_conv
- improve the passwd-order patch so it doesn't regress
  passwd on the NIS master server

* Mon Jan 24 2005 Tomas Mraz <tmraz at redhat.com>
- ALLGROUP and ALL limits weren't correctly applied by pam_limits
- Fix a typo in pam_localuser README

This update can be downloaded from:

d1a8c71517ac457b12522906b5ca00e4  SRPMS/pam-0.77-66.2.13.src.rpm
bf60d28835a86303ec733ebd9ded454c  x86_64/pam-0.77-66.2.13.x86_64.rpm
a5ca72723f4141b7af15b9fc0e2f2411  x86_64/pam-devel-0.77-66.2.13.x86_64.rpm
cea2cac58b70de0e8b692dbd5687be32  x86_64/debug/pam-debuginfo-0.77-66.2.13.x86_64.rpm
7f888626b9ec2ec25ad5871366974b92  x86_64/pam-0.77-66.2.13.i386.rpm
2178f2baec355d9096b751f03d0f0ed7  x86_64/pam-devel-0.77-66.2.13.i386.rpm
7f888626b9ec2ec25ad5871366974b92  i386/pam-0.77-66.2.13.i386.rpm
2178f2baec355d9096b751f03d0f0ed7  i386/pam-devel-0.77-66.2.13.i386.rpm
0e2577415f68615d088d5d6fdbd303ab  i386/debug/pam-debuginfo-0.77-66.2.13.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  

fedora-announce-list mailing list
fedora-announce-list at redhat.com

More information about the UCI-Linux mailing list