Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package pam_pkcs11 for openSUSE:Factory checked in at 2026-03-26 21:09:51 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/pam_pkcs11 (Old) and /work/SRC/openSUSE:Factory/.pam_pkcs11.new.8177 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "pam_pkcs11" Thu Mar 26 21:09:51 2026 rev:43 rq:1342711 version:0.6.13 Changes: -------- --- /work/SRC/openSUSE:Factory/pam_pkcs11/pam_pkcs11.changes 2025-06-20 16:51:59.094653299 +0200 +++ /work/SRC/openSUSE:Factory/.pam_pkcs11.new.8177/pam_pkcs11.changes 2026-03-27 06:46:38.842896295 +0100 @@ -1,0 +2,6 @@ +Sun Mar 22 22:42:58 UTC 2026 - Simon Vogl <[email protected]> + +- Fix for bsc#1259854: + * Add patch pam_pkcs11-0.6.13-fix-null-deref.patch + +------------------------------------------------------------------- New: ---- pam_pkcs11-0.6.13-fix-null-deref.patch ----------(New B)---------- New:- Fix for bsc#1259854: * Add patch pam_pkcs11-0.6.13-fix-null-deref.patch ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam_pkcs11.spec ++++++ --- /var/tmp/diff_new_pack.ytjdIn/_old 2026-03-27 06:46:39.462921889 +0100 +++ /var/tmp/diff_new_pack.ytjdIn/_new 2026-03-27 06:46:39.470922219 +0100 @@ -1,7 +1,7 @@ # # spec file for package pam_pkcs11 # -# Copyright (c) 2025 SUSE LLC +# Copyright (c) 2026 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -34,6 +34,8 @@ Patch0: %{name}-fsf-address.patch Patch1: %{name}-0.5.3-nss-conf.patch Patch3: %{name}-0.6.0-nss-autoconf.patch +# PATCH-FIX-OPENSUSE pam_pkcs11-0.6.13-fix-null-deref.patch -- Fix null deref described in bsc#1259854 +Patch4: %{name}-0.6.13-fix-null-deref.patch BuildRequires: curl-devel BuildRequires: docbook-xsl-stylesheets ++++++ pam_pkcs11-0.6.13-fix-null-deref.patch ++++++ Index: pam_pkcs11-pam_pkcs11-0.6.13/src/common/pkcs11_lib.c =================================================================== --- pam_pkcs11-pam_pkcs11-0.6.13.orig/src/common/pkcs11_lib.c +++ pam_pkcs11-pam_pkcs11-0.6.13/src/common/pkcs11_lib.c @@ -468,6 +468,11 @@ PK11SlotInfo *slot; PRIntervalTime slot_poll_interval; /* only for legacy hardware */ + /* stop if handle or module is not initialized */ + if (h == NULL || h->module == NULL) { + break; + } + /* if the card is not inserted, then block until something happens */ slot_poll_interval = PR_MillisecondsToInterval(PAM_PKCS11_POLL_TIME); slot = SECMOD_WaitForAnyTokenEvent(h->module, 0 /* flags */,
