UbuntuUpdates.org

Package "libpam-runtime"

Name: libpam-runtime

Description:

Runtime support for the PAM library

Latest version: 1.1.8-3.6ubuntu2.18.04.6
Release: bionic (18.04)
Level: updates
Repository: main
Head package: pam
Homepage: http://www.linux-pam.org/

Links


Download "libpam-runtime"


Other versions of "libpam-runtime" in Bionic

Repository Area Version
base main 1.1.8-3.6ubuntu2
security main 1.1.8-3.6ubuntu2.18.04.6

Changelog

Version: 1.1.8-3.6ubuntu2.18.04.6 2023-02-06 06:07:09 UTC

  pam (1.1.8-3.6ubuntu2.18.04.6) bionic-security; urgency=medium

  * SECURITY REGRESSION: fix CVE-2022-28321 patch location
    - debian/patches-applied/CVE-2022-28321.patch: pam_access: handle
      hostnames in access.conf
    - CVE-2022-28321

 -- Nishit Majithia <email address hidden> Thu, 02 Feb 2023 14:54:07 +0530

Source diff to previous version
CVE-2022-28321 The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH logins. The pam_access.so module doesn't correctl

Version: 1.1.8-3.6ubuntu2.18.04.4 2023-01-25 12:06:52 UTC

  pam (1.1.8-3.6ubuntu2.18.04.4) bionic-security; urgency=medium

  * SECURITY UPDATE: authentication bypass vulnerability
    - debian/patches/CVE-2022-28321.patch: pam_access: handle hostnames in
      access.conf
    - CVE-2022-28321

 -- Nishit Majithia <email address hidden> Tue, 24 Jan 2023 17:30:04 +0530

Source diff to previous version
CVE-2022-28321 The Linux-PAM package before 1.5.2-6.1 for openSUSE Tumbleweed allows authentication bypass for SSH logins. The pam_access.so module doesn't correctl

Version: 1.1.8-3.6ubuntu2.18.04.3 2021-05-27 12:06:19 UTC

  pam (1.1.8-3.6ubuntu2.18.04.3) bionic; urgency=medium

  * Backport pam_faillock module from pam 1.4.0 (LP: #1927796)
    - debian/patches-applied/add_pam_faillock.patch: add module.
    - debian/patches-applied/pam_faillock_create_directory: create dir
      before creating file in modules/pam_faillock/faillock.c.
    - debian/rules: set execute permissions on pam_faillock test.
    - debian/libpam-modules-bin.install: install faillock binary and man
      page.

 -- Marc Deslauriers <email address hidden> Thu, 08 Apr 2021 07:27:58 -0400

Source diff to previous version
1927796 [SRU]pam_tally2 can cause accounts to be locked by correct password. pam_faillock use is the recommended fix

Version: 1.1.8-3.6ubuntu2.18.04.2 2020-08-25 18:06:17 UTC

  pam (1.1.8-3.6ubuntu2.18.04.2) bionic; urgency=medium

  * debian/libpam-modules.postinst: Add /snap/bin to $PATH in
    /etc/environment. (LP: #1659719)

 -- Michael Hudson-Doyle <email address hidden> Wed, 22 Jul 2020 11:40:59 +1200

Source diff to previous version

Version: 1.1.8-3.6ubuntu2.18.04.1 2019-03-07 20:06:26 UTC

  pam (1.1.8-3.6ubuntu2.18.04.1) bionic; urgency=medium

  * debian/patches-applied/fix-pam_tty_audit.patch: (LP: #1666203)
    Fix pam_tty_audit log_passwd support and regression.

 -- Eric Desrochers <email address hidden> Wed, 27 Feb 2019 14:26:50 +0000

1666203 pam_tty_audit failed in pam_open_session



About   -   Send Feedback to @ubuntu_updates