Bug#962830: libpam-tacplus: CVE-2020-13881

Followup-For: Bug #962830 So far this was only fixed in jessie-lts, causing a version ordering violation on upgrades: libpam-tacplus | 1.3.8-2| jessie | source libpam-tacplus | 1.3.8-2| stretch | source libpam-tacplus | 1.3.8-2| buster |

Bug#962830: libpam-tacplus: CVE-2020-13881

Source: libpam-tacplus Version: 1.3.8-2 Severity: important Tags: security upstream Forwarded: https://github.com/kravietz/pam_tacplus/issues/149 Hi, The following vulnerability was published for libpam-tacplus. CVE-2020-13881[0]: | In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+