A Security Tool that Provides Authentication for Applications
PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policies without
having to recompile programs that do authentication.
- Developed at Linux-PAM
-
6
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory/pam && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| Linux-PAM-1.6.0.tar.xz | 0001048296 1020 KB | |
| Linux-PAM-1.6.0.tar.xz.asc | 0000000801 801 Bytes | |
| _multibuild | 0000000051 51 Bytes | |
| baselibs.conf | 0000000144 144 Bytes | |
| common-account.pamd | 0000000380 380 Bytes | |
| common-auth.pamd | 0000000462 462 Bytes | |
| common-password.pamd | 0000000435 435 Bytes | |
| common-session-nonlogin.pamd | 0000000565 565 Bytes | |
| common-session.pamd | 0000000482 482 Bytes | |
| macros.pam | 0000000311 311 Bytes | |
| other.pamd | 0000000251 251 Bytes | |
| pam-limit-nproc.patch | 0000000412 412 Bytes | |
| pam-login_defs-check.sh | 0000001441 1.41 KB | |
| pam.changes | 0000085223 83.2 KB | |
| pam.spec | 0000019134 18.7 KB | |
| pam.tmpfiles | 0000000195 195 Bytes | |
| pam_env-fix-enable-vendordir-fallback.patch | 0000002053 2 KB | |
| pam_env-fix_vendordir.patch | 0000001627 1.59 KB | |
| pam_env-remove-escaped-newlines.patch | 0000001636 1.6 KB | |
| pam_unix-fix-password-aging-disabled.patch | 0000000899 899 Bytes | |
| postlogin-account.pamd | 0000000379 379 Bytes | |
| postlogin-auth.pamd | 0000000380 380 Bytes | |
| postlogin-password.pamd | 0000000382 382 Bytes | |
| postlogin-session.pamd | 0000000379 379 Bytes | |
| unix2_chkpwd.8 | 0000001739 1.7 KB | |
| unix2_chkpwd.c | 0000006885 6.72 KB |
Revision 134 (latest revision is 142)
Ana Guerrero (anag+factory)
accepted
request 1139944
from
Thorsten Kukuk (kukuk)
(revision 134)
- Add post 1.6.0 release fixes for pam_env and pam_unix:
- pam_env-fix-enable-vendordir-fallback.patch
- pam_env-fix_vendordir.patch
- pam_env-remove-escaped-newlines.patch
- pam_unix-fix-password-aging-disabled.patch
- Update to version 1.6.0
- Added support of configuration files with arbitrarily long lines.
- build: fixed build outside of the source tree.
- libpam: added use of getrandom(2) as a source of randomness if available.
- libpam: fixed calculation of fail delay with very long delays.
- libpam: fixed potential infinite recursion with includes.
- libpam: implemented string to number conversions validation when parsing
controls in configuration.
- pam_access: added quiet_log option.
- pam_access: fixed truncation of very long group names.
- pam_canonicalize_user: new module to canonicalize user name.
- pam_echo: fixed file handling to prevent overflows and short reads.
- pam_env: added support of '\' character in environment variable values.
- pam_exec: allowed expose_authtok for password PAM_TYPE.
- pam_exec: fixed stack overflow with binary output of programs.
- pam_faildelay: implemented parameter ranges validation.
- pam_listfile: changed to treat \r and \n exactly the same in configuration.
- pam_mkhomedir: hardened directory creation against timing attacks.
- Please note that using *at functions leads to more open file handles
during creation.
- pam_namespace: fixed potential local DoS (CVE-2024-22365).
- pam_nologin: fixed file handling to prevent short reads.
- pam_pwhistory: helper binary is now built only if SELinux support is
enabled.
- pam_pwhistory: implemented reliable usernames handling when remembering
Comments 0