- Update to 1.5.1

- pam_unix: fixed CVE-2020-27780 - authentication bypass when a user doesn't exist and root password is blank [bsc#1179166] - pam_faillock: added nodelay option to not set pam_fail_delay - pam_wheel: use pam_modutil_user_in_group to check for the group membership with getgrouplist where it is available OBS-URL: https://build.opensuse.org/package/show/Linux-PAM/pam?expand=0&rev=229
2020-11-27 09:37:31 +00:00 · 2020-11-27 09:37:31 +00:00 · 34431add7d
commit 34431add7d
parent c4daf63ae5
8 changed files with 17 additions and 27 deletions
--- a/Linux-PAM-1.5.0-docs.tar.xz
+++ b/Linux-PAM-1.5.0-docs.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:75fefd2a601c76d5e289aa8c36234ec2ac398395f4a48caf5ef638c1131019a9
-size 441644
--- a/Linux-PAM-1.5.0.tar.xz
+++ b/Linux-PAM-1.5.0.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:02d39854b508fae9dc713f7733bbcdadbe17b50de965aedddd65bcb6cc7852c8
-size 972228
--- a/Linux-PAM-1.5.1-docs.tar.xz
+++ b/Linux-PAM-1.5.1-docs.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d0fc4ef466d0050f46b0ccd2f73373c60c47454da55f6fb2fd04b0701c73c134
+size 441632
--- a/Linux-PAM-1.5.1.tar.xz
+++ b/Linux-PAM-1.5.1.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:201d40730b1135b1b3cdea09f2c28ac634d73181ccd0172ceddee3649c5792fc
+size 972964
--- a/14
+++ b/14
@ -1,14 +0,0 @@
-<services>
-  <service name="tar_scm" mode="disabled">
-    <param name="version">1.3.1</param>
-    <param name="versionformat">1.3.1+git%cd.%h</param>
-    <param name="url">git://github.com/linux-pam/linux-pam.git</param>
-    <param name="scm">git</param>
-    <param name="changesgenerate">enable</param>
-  </service>
-  <service name="recompress" mode="disabled">
-    <param name="compression">xz</param>
-    <param name="file">*.tar</param>
-  </service>
-  <service name="set_version" mode="disabled"/>
-</services>
--- a/6
+++ b/6
@ -1,6 +0,0 @@
-<servicedata>
-  <service name="tar_scm">
-    <param name="url">git://github.com/linux-pam/linux-pam.git</param>
-    <param name="changesrevision">ea78d6764353c5510b235846452e6810d009b78e</param>
- </service>
-</servicedata>
--- a/pam.changes
+++ b/pam.changes
@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Fri Nov 27 09:10:28 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
+
+- Update to 1.5.1
+  - pam_unix: fixed CVE-2020-27780 - authentication bypass when a user
+    doesn't exist and root password is blank [bsc#1179166]
+  - pam_faillock: added nodelay option to not set pam_fail_delay
+  - pam_wheel: use pam_modutil_user_in_group to check for the group membership
+    with getgrouplist where it is available
+
 -------------------------------------------------------------------
 Thu Nov 19 15:43:33 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>

--- a/pam.spec
+++ b/pam.spec
@ -27,7 +27,7 @@
 %endif
 Name:           pam
 #
-Version:        1.5.0
+Version:        1.5.1
 Release:        0
 Summary:        A Security Tool that Provides Authentication for Applications
 License:        GPL-2.0-or-later OR BSD-3-Clause