[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pam-cvs
Subject:    [PAM-CVS-Tracking] Commit notice
From:       Tomas Mraz <t8m () users ! sourceforge ! net>
Date:       2005-10-26 19:05:32
Message-ID: E1EUqaa-0000So-Gp () sc8-pr-cvs1 ! sourceforge ! net
[Download RAW message or body]

========== files committed ===============

Linux-PAM/modules/pam_unix
pam_unix_acct.c 1.15 -> 1.16
pam_unix_passwd.c 1.33 -> 1.34
support.c 1.34 -> 1.35
unix_chkpwd.c 1.14 -> 1.15

============= commit log =================

Update of /cvsroot/pam/Linux-PAM/modules/pam_unix
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv1179/modules/pam_unix

Modified Files:
	pam_unix_acct.c pam_unix_passwd.c support.c unix_chkpwd.c 
Log Message:
Relevant BUGIDs: Red Hat bz 168180

Purpose of commit: bugfix

Commit summary:
---------------
2005-10-26  Tomas Mraz  <t8m@centrum.cz>

        * modules/pam_unix/pam_unix_acct.c (_unix_run_verify_binary),
        modules/pam_unix/pam_unix_passwd.c (_unix_run_shadow_binary),
        modules/pam_unix/support.c (_unix_run_shadow_binary_): Set real
        uid to 0 before executing the helper if SELinux is enabled.
        * modules/pam_unix/unix_chkpwd.c (main): Disable user check only
        if real uid is 0 (CVE-2005-2977). Log failed password check attempt.



-------------------------------------------------------
This SF.Net email is sponsored by the JBoss Inc.
Get Certified Today * Register for a JBoss Training Course
Free Certification Exam for All Training Attendees Through End of 2005
Visit http://www.jboss.com/services/certification for more information
_______________________________________________
PAM-CVS-Tracking mailing list
PAM-CVS-Tracking@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/pam-cvs-tracking
[prev in list] [next in list] [prev in thread] [next in thread]