Format: 1.8
Date: Thu, 19 May 2011 08:44:14 -0400
Source: pam
Binary: libpam0g libpam-modules libpam-runtime libpam0g-dev libpam-cracklib libpam-doc
Architecture: amd64 amd64_translations
Version: 1.1.1-2ubuntu5.2
Distribution: lucid
Urgency: low
Maintainer: Ubuntu/amd64 Build Daemon <buildd@crested.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libpam-cracklib - PAM module to enable cracklib support
 libpam-doc - Documentation of PAM
 libpam-modules - Pluggable Authentication Modules for PAM
 libpam-runtime - Runtime support for the PAM library
 libpam0g   - Pluggable Authentication Modules library
 libpam0g-dev - Development files for PAM
Changes: 
 pam (1.1.1-2ubuntu5.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: multiple issues with lack of adequate privilege
     dropping
     - debian/patches/security-dropprivs.patch: introduce new privilege
       dropping code in libpam/pam_modutil_priv.c, libpam/Makefile.*,
       libpam/include/security/pam_modutil.h, libpam/libpam.map,
       modules/pam_env/pam_env.c, modules/pam_mail/pam_mail.c,
       modules/pam_xauth/pam_xauth.c.
     - CVE-2010-3316
     - CVE-2010-3430
     - CVE-2010-3431
     - CVE-2010-3435
     - CVE-2010-4706
     - CVE-2010-4707
   * SECURITY UPDATE: privilege escalation via incorrect environment
     - debian/patches/CVE-2010-3853.patch: use clean environment in
       modules/pam_namespace/pam_namespace.c.
     - CVE-2010-3853
   * debian/patches-applied/series: disable hurd_no_setfsuid patch, as it
     isn't needed for Ubuntu, and it needs to be rewritten to work with the
     massive privilege refactoring in the security patches.
Checksums-Sha1: 
 59bf2bdb65f937cea231348d30f667d03fd5d1a1 127564 libpam0g_1.1.1-2ubuntu5.2_amd64.deb
 7248e72826cdfec92d38869919e1221e464a1f10 381008 libpam-modules_1.1.1-2ubuntu5.2_amd64.deb
 3b9a4f389eaa9792ef37853452fdc45dc6634b10 190144 libpam0g-dev_1.1.1-2ubuntu5.2_amd64.deb
 0e85dcff6d97ada621f7dd9c759482a2e2e0c36f 87640 libpam-cracklib_1.1.1-2ubuntu5.2_amd64.deb
 5556b70025583731bd3ff52bb932c52f82890733 138469 pam_1.1.1-2ubuntu5.2_amd64_translations.tar.gz
Checksums-Sha256: 
 6b88ab265d81a737179806c292ed4afe067e9c6730178a82502d679d8842d81f 127564 libpam0g_1.1.1-2ubuntu5.2_amd64.deb
 b5dccd40e155e88bc28326324907a1a3f1a24e621d0d02da206271a0c90a7cdc 381008 libpam-modules_1.1.1-2ubuntu5.2_amd64.deb
 80006f6c6ae72d3c8a8befb59c1e645f498155e63b025e43335bc32f03df9568 190144 libpam0g-dev_1.1.1-2ubuntu5.2_amd64.deb
 636ed5f371363f1e20dc624f2e8a55a8207b9fb260b92eea6266a7bbf8c6dc9a 87640 libpam-cracklib_1.1.1-2ubuntu5.2_amd64.deb
 c6f7a7dcac8e2652400c41a5e62a7474d3f669c7c26f3acd7be8a11f1e266cbb 138469 pam_1.1.1-2ubuntu5.2_amd64_translations.tar.gz
Files: 
 2773be7e2285e74ecfbb53e81dabfa8e 127564 libs required libpam0g_1.1.1-2ubuntu5.2_amd64.deb
 3ce747e92e07968c3b357e6a45d3756e 381008 admin required libpam-modules_1.1.1-2ubuntu5.2_amd64.deb
 3228873d382a204c83a9fdc5387270a0 190144 libdevel optional libpam0g-dev_1.1.1-2ubuntu5.2_amd64.deb
 ea9b4aaae8ff3972a4824b79cf30fb1f 87640 admin optional libpam-cracklib_1.1.1-2ubuntu5.2_amd64.deb
 c166915f403335426c111ede0a80625c 138469 raw-translations - pam_1.1.1-2ubuntu5.2_amd64_translations.tar.gz
Original-Maintainer: Steve Langasek <vorlon@debian.org>