pam 1.1.3-2ubuntu2.1 source package in Ubuntu

Changelog

pam (1.1.3-2ubuntu2.1) oneiric-security; urgency=low

  * SECURITY UPDATE: possible code execution via incorrect environment file
    parsing (LP: #874469)
    - debian/patches-applied/CVE-2011-3148.patch: correctly count leading
      whitespace when parsing environment file in modules/pam_env/pam_env.c.
    - CVE-2011-3148
  * SECURITY UPDATE: denial of service via overflowed environment variable
    expansion (LP: #874565)
    - debian/patches-applied/CVE-2011-3149.patch: when overflowing, exit
      with PAM_BUF_ERR in modules/pam_env/pam_env.c.
    - CVE-2011-3149
  * SECURITY UPDATE: code execution via incorrect environment cleaning
    - debian/patches-applied/update-motd: updated to use clean environment
      and absolute paths in modules/pam_motd/pam_motd.c.
    - CVE-2011-XXXX
 -- Marc Deslauriers <email address hidden>   Tue, 18 Oct 2011 09:33:47 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2011-10-18
Uploaded to:
Oneiric
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
pam_1.1.3.orig.tar.gz 1.7 MiB 9a977619848cfed372d9b361e328ec99
pam_1.1.3-2ubuntu2.1.diff.gz 279.1 KiB 0f10c39785d1143c4e3509f971694407
pam_1.1.3-2ubuntu2.1.dsc 2.2 KiB 4361461f0fd0a3a0250c7c2a4b130883

View changes file

Binary packages built by this source

libpam-cracklib: No summary available for libpam-cracklib in ubuntu oneiric.

No description available for libpam-cracklib in ubuntu oneiric.

libpam-doc: No summary available for libpam-doc in ubuntu oneiric.

No description available for libpam-doc in ubuntu oneiric.

libpam-modules: No summary available for libpam-modules in ubuntu oneiric.

No description available for libpam-modules in ubuntu oneiric.

libpam-modules-bin: No summary available for libpam-modules-bin in ubuntu oneiric.

No description available for libpam-modules-bin in ubuntu oneiric.

libpam-runtime: No summary available for libpam-runtime in ubuntu oneiric.

No description available for libpam-runtime in ubuntu oneiric.

libpam0g: No summary available for libpam0g in ubuntu oneiric.

No description available for libpam0g in ubuntu oneiric.

libpam0g-dev: Development files for PAM

 Contains C header files and development libraries for libpam, the Pluggable
 Authentication Modules, a library that enables the local system
 administrator to choose how applications authenticate users.
 .
 PAM decouples applications from the authentication mechanism, making it
 possible to upgrade the authentication system without recompiling or
 rewriting the applications.