Bug#789986: pam: CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix module

On 16 December 2015 at 14:09, Tianon Gravi wrote: > Just a friendly ping; any movement towards fixing or at least > investigating this vuln? This package is part of minbase, so IMO it > looks a little strange to have even something as low as a CVSS 5.8 > still pending a

Bug#789986: pam: CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix module

Hi Tianon, hi Steve, On Wed, Dec 23, 2015 at 03:27:10PM -0800, Tianon Gravi wrote: > On 16 December 2015 at 14:09, Tianon Gravi wrote: > > Just a friendly ping; any movement towards fixing or at least > > investigating this vuln? This package is part of minbase, so IMO it > >

Bug#789986: pam: CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix module

On Thu, 25 Jun 2015 22:33:21 +0200 Salvatore Bonaccorso wrote: > CVE-2015-3238[0]: > DoS/user enumeration due to blocking pipe in pam_unix module Just a friendly ping; any movement towards fixing or at least investigating this vuln? This package is part of minbase, so IMO it

Bug#789986: pam: CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix module

Source: pam Version: 1.1.3-7 Severity: important Tags: security upstream fixed-upstream Hi, the following vulnerability was published for pam. CVE-2015-3238[0]: DoS/user enumeration due to blocking pipe in pam_unix module If you fix the vulnerability please also make sure to include the CVE