[ol9_baseos_latest] pam-1.5.1-19.0.2.el9.x86_64

PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policy without
having to recompile programs that handle authentication.

Changelog (Show File list) (Show related packages)

• Fri Jul 05 2024 Kaylin Devchand <kaylin.devchand@oracle.com> - 1.3.1-19.0.2

  - pam_access: clean up the remote host matching code [Orabug: 36771903]

• Wed Apr 03 2024 Darren Archibald <darren.archibald@oracle.com> - 1.3.1-19.0.1

  - pam_limits: fix use after free in pam_sm_open_session [Orabug: 36406534]

• Mon Feb 12 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-19

  - pam_namespace: protect_dir(): use O_DIRECTORY to prevent local DoS
    situations. CVE-2024-22365. Resolves: RHEL-21244

• Fri Jan 26 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-18

  - libpam: use getlogin() from libc and not utmp. Resolves: RHEL-16727
  - pam_access: handle hostnames in access.conf. Resolves: RHEL-22300

• Mon Jan 08 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.5.1-17

  - pam_faillock: create tallydir before creating tallyfile. Resolves: RHEL-20943

• Fri Nov 10 2023 Iker Pedrosa <ipedrosa@redhat.com> - 1.5.1-16

  - libpam: use close_range() to close file descriptors. Resolves: RHEL-5099
  - fix formatting of audit messages. Resolves: RHEL-5100

• Mon Jun 26 2023 Iker Pedrosa <ipedrosa@redhat.com> - 1.5.1-15

  - pam_misc: make length of misc_conv() configurable and set to 4096. Resolves: #2215007

• Tue Nov 29 2022 Iker Pedrosa <ipedrosa@redhat.com> - 1.5.1-14

  - pam_lastlog: check localtime_r() return value. Resolves: #2130124
  - pam_faillock: clarify missing user faillock files after reboot. Resolves: #2126632
  - pam_faillock: avoid logging an erroneous consecutive login failure message. Resolves: #2126648

• Wed Sep 28 2022 Iker Pedrosa <ipedrosa@redhat.com> - 1.5.1-13

  - pam_pwhistory: load configuration from file. Resolves: #2126640