[ol8_baseos_latest] pam-1.3.1-36.0.1.el8_10.x86_64

PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policy without
having to recompile programs that handle authentication.

Changelog (Show File list) (Show related packages)

• Tue Nov 26 2024 Alan Steinberg <alan.steinberg@oracle.com> - 1.3.1-36.0.1

  - pam_limits: fix use after free in pam_sm_open_session [Orabug: 36272695]

• Mon Nov 25 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-36

  - pam_access: rework resolving of tokens as hostname.
    Resolves: CVE-2024-10963 and RHEL-66242

• Mon Nov 04 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-35

  - pam_unix: always run the helper to obtain shadow password file entries.
    CVE-2024-10041. Resolves: RHEL-62877
  - pam_access: always match local address and clarify LOCAL keyword behaviour.
    Resolves: RHEL-23018
  - libpam: support long lines in service files. Resolves: RHEL-5051

• Thu Apr 04 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-34

  - fix formatting of audit messages. Resolves: RHEL-28620

• Mon Feb 12 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-33

  - pam_namespace: protect_dir(): use O_DIRECTORY to prevent local DoS
    situations. CVE-2024-22365. Resolves: RHEL-21242

• Fri Jan 26 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-32

  - pam_access: handle hostnames in access.conf. Resolves: RHEL-3374

• Mon Jan 08 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-31

  - pam_faillock: create tallydir before creating tallyfile. Resolves: RHEL-19810

• Thu Nov 02 2023 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-30

  - pam_unix: enable bcrypt. Resolves: RHEL-5057

• Mon Jun 26 2023 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-27

  - pam_misc: make length of misc_conv() configurable and set to 4096. Resolves: #2209785

• Tue May 16 2023 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-26

  - smartcard-auth: modify the content to remove unnecessary modules. Resolves: #1983683