[ubuntu/wily-security] pam 1.1.8-3.1ubuntu3.1 (Accepted)

Marc Deslauriers Sat, 19 Mar 2016 08:36:29 -0700

pam (1.1.8-3.1ubuntu3.1) wily-security; urgency=medium

  * SECURITY UPDATE: username enumeration via large passwords
    - debian/patches-applied/cve-2015-3238.patch: limit password size to
      prevent a helper function hang in modules/pam_exec/pam_exec.8.xml,
      modules/pam_exec/pam_exec.c, modules/pam_unix/pam_unix.8.xml,
      modules/pam_unix/pam_unix_passwd.c, modules/pam_unix/passverify.c,
      modules/pam_unix/passverify.h, modules/pam_unix/support.c.
    - CVE-2015-3238


Date: 2016-03-15 19:28:32.561227+00:00
Changed-By: Marc Deslauriers <[email protected]>
https://launchpad.net/ubuntu/+source/pam/1.1.8-3.1ubuntu3.1

Sorry, changesfile not available.

-- 
Wily-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/wily-changes

[ubuntu/wily-security] pam 1.1.8-3.1ubuntu3.1 (Accepted)

Reply via email to