pam 1.1.3-2ubuntu2.1 source package in Ubuntu

Changelog

pam (1.1.3-2ubuntu2.1) oneiric-security; urgency=low

  * SECURITY UPDATE: possible code execution via incorrect environment file
    parsing (LP: #874469)
    - debian/patches-applied/CVE-2011-3148.patch: correctly count leading
      whitespace when parsing environment file in modules/pam_env/pam_env.c.
    - CVE-2011-3148
  * SECURITY UPDATE: denial of service via overflowed environment variable
    expansion (LP: #874565)
    - debian/patches-applied/CVE-2011-3149.patch: when overflowing, exit
      with PAM_BUF_ERR in modules/pam_env/pam_env.c.
    - CVE-2011-3149
  * SECURITY UPDATE: code execution via incorrect environment cleaning
    - debian/patches-applied/update-motd: updated to use clean environment
      and absolute paths in modules/pam_motd/pam_motd.c.
    - CVE-2011-XXXX
 -- Marc Deslauriers <email address hidden>   Tue, 18 Oct 2011 09:33:47 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2011-10-18
Uploaded to:
Oneiric
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
pam_1.1.3.orig.tar.gz 1.7 MiB a5bff0a161aeb6c0857fd441ff984749a8b208ad50b8d1f117058a6301741a0f
pam_1.1.3-2ubuntu2.1.diff.gz 279.1 KiB c1885332f6e0aa332ac65d4e43a011367c2490f31c1f41c7f9985dbf59475502
pam_1.1.3-2ubuntu2.1.dsc 2.2 KiB f6214d51b14500496a9e21967323c13888ef4f24ac64c5c7380affbddc22bcb7

View changes file

Binary packages built by this source

libpam-cracklib: No summary available for libpam-cracklib in ubuntu oneiric.

No description available for libpam-cracklib in ubuntu oneiric.

libpam-doc: No summary available for libpam-doc in ubuntu oneiric.

No description available for libpam-doc in ubuntu oneiric.

libpam-modules: No summary available for libpam-modules in ubuntu oneiric.

No description available for libpam-modules in ubuntu oneiric.

libpam-modules-bin: No summary available for libpam-modules-bin in ubuntu oneiric.

No description available for libpam-modules-bin in ubuntu oneiric.

libpam-runtime: No summary available for libpam-runtime in ubuntu oneiric.

No description available for libpam-runtime in ubuntu oneiric.

libpam0g: No summary available for libpam0g in ubuntu oneiric.

No description available for libpam0g in ubuntu oneiric.

libpam0g-dev: Development files for PAM

 Contains C header files and development libraries for libpam, the Pluggable
 Authentication Modules, a library that enables the local system
 administrator to choose how applications authenticate users.
 .
 PAM decouples applications from the authentication mechanism, making it
 possible to upgrade the authentication system without recompiling or
 rewriting the applications.