pool/pam_u2f
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
31 Commits 2 Branches 0 Tags
Commit Graph

31 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Ana Guerrero
bfe2425e41 Accepting request 1239306 from security 
OBS-URL: https://build.opensuse.org/request/show/1239306
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=14
 2025-01-21 20:11:24 +00:00
Paolo Perego
c57ee4d23c - update to 1.3.2: 
* Relax authfile permission check to a warning instead of an error to prevent
    a breaking change locking existing users out of their systems.

OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=28
 2025-01-21 14:26:33 +00:00
Ana Guerrero
eae97f44aa Accepting request 1238020 from security 
OBS-URL: https://build.opensuse.org/request/show/1238020
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=13
 2025-01-15 16:45:18 +00:00
Paolo Perego
af57c7ed75 - update to 1.3.1: 
* Fix incorrect usage of PAM_IGNORE (YSA-2025-01, CVE-2025-23013).
  * Changed return value when nouserok is enabled and the user has no
  credentials, PAM_IGNORE is used instead of PAM_SUCCESS.
  * Hardened checks of authfile permissions.
  * Hardened checks for nouserok.
  * Improved debug messages.
  * Improved documentation.

OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=26
 2025-01-15 10:05:12 +00:00
Dominique Leuenberger
6289f3e400 Accepting request 1079764 from security 
OBS-URL: https://build.opensuse.org/request/show/1079764
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=12
 2023-04-16 17:13:05 +00:00
Torsten Gruner
1afb94d6dc Accepting request 1079585 from home:dirkmueller:Factory 
- update to 1.3.0:
  * Add sanity checking of UV options to pamu2fcfg.
  * Add support for username expansion in the authfile path.
  * Improvements to the documentation.

OBS-URL: https://build.opensuse.org/request/show/1079585
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=24
 2023-04-16 14:18:34 +00:00
Dominique Leuenberger
8ea534fdc6 Accepting request 979765 from security 
OBS-URL: https://build.opensuse.org/request/show/979765
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=11
 2022-05-30 10:44:13 +00:00
Torsten Gruner
b1c04075cd Accepting request 979744 from home:dirkmueller:Factory 
- update to 1.2.1:
  * Fixed an issue where native credentials could be truncated, resulting in
    failure to authenticate or successful authentication with missing options.
  * Stricter parsing of sshformat credentials.
  * pamu2fcfg now allows a combination of the --username and --nouser options.
  * Improved documentation on FIDO2 options.
- add keyring for validation

OBS-URL: https://build.opensuse.org/request/show/979744
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=22
 2022-05-30 04:47:40 +00:00
Dominique Leuenberger
a7f15a3d66 Accepting request 926098 from security 
OBS-URL: https://build.opensuse.org/request/show/926098
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=10
 2021-10-19 21:03:45 +00:00
Torsten Gruner
69f5109310 Accepting request 926097 from home:Simmphonie:yubico 
- Define macro _pam_moduledir if not set to fix builds for Leap and SLE

OBS-URL: https://build.opensuse.org/request/show/926097
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=21
 2021-10-18 20:29:19 +00:00
Dominique Leuenberger
5df1c7f57f Accepting request 925050 from security 
OBS-URL: https://build.opensuse.org/request/show/925050
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=9
 2021-10-13 16:06:21 +00:00
Paolo Perego
18e971c2ba Accepting request 925028 from home:pperego:branches:security 
- Update to version 1.2.0 (released 2021-09-22)
  * Added support for EdDSA keys.
  * Added support for SSH ed25519-sk keys.
  * Added authenticator filtering based on user verification options.
  * Fixed an issue with privilege restoration on MacOS.
  * Fixed an issue where credentials created with pamu2fcfg 1.0.8 or earlier were not handled correctly if their origin and appid differed.
  * Miscellaneous improvements to the documentation.
  * Miscellaneous minor bug fixes found by fuzzing.
- Fix for bsc#1190961 - Removed hardcoded library pathnames using %{_pam_moduledir}

OBS-URL: https://build.opensuse.org/request/show/925028
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=20
 2021-10-13 09:20:10 +00:00
Dominique Leuenberger
76c1d80caf Accepting request 894632 from security 
OBS-URL: https://build.opensuse.org/request/show/894632
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=8
 2021-05-20 17:25:42 +00:00
Paolo Perego
66962c2bd0 Accepting request 894628 from home:Simmphonie:yubico 
- Update to version 1.1.1 (released 2021-05-19)
  * Fix an issue where PIN authentication could be bypassed (CVE-2021-31924).
  * Fix an issue with nodetect and non-resident credentials.
  * Fix build issues with musl libc.
  * Add support for self-attestation in pamu2fcfg.
  * Fix minor bugs found by fuzzing.

OBS-URL: https://build.opensuse.org/request/show/894628
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=18
 2021-05-20 13:30:26 +00:00
Dominique Leuenberger
acd4eb705b Accepting request 842289 from security 
OBS-URL: https://build.opensuse.org/request/show/842289
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=7
 2020-10-18 14:35:16 +00:00
Torsten Gruner
640590c57a Accepting request 841990 from home:namtrac:branches:security 
- Update to version 1.1.0
  * Add support to FIDO2 (move from libu2f-host+libu2f-server to libfido2)
  * Add support to User Verification
  * Add support to PIN Verification
  * Add support to Resident Credentials
  * Add support to SSH credential format
- Drop libu2f-host and libu2f-server BuildRequires
- Add BuildRequires on pkgconfig(libfido2)
- Add explicit BuildRequires on pkgconfig(libcrypto), this was being
  pulled down implicitly before.

OBS-URL: https://build.opensuse.org/request/show/841990
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=16
 2020-10-17 11:29:17 +00:00
Dominique Leuenberger
f8cfa27bcd Accepting request 707661 from security 
OBS-URL: https://build.opensuse.org/request/show/707661
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=6
 2019-06-05 09:46:28 +00:00
Marcus Meissner
e51cf51a7b Accepting request 707602 from home:kbabioch:branches:security 
- Version 1.0.8 (released 2019-06-04)
  * Fix insecure debug file handling CVE-2019-12209 (bsc#1135729).
  * Fix debug file descriptor leak CVE-2019-12210 (bsc#1135727).
  * Fix a non-critical buffer oob access.
- Applied spec-cleaner

OBS-URL: https://build.opensuse.org/request/show/707602
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=14
 2019-06-04 15:40:12 +00:00
Dominique Leuenberger
c0459bfeeb Accepting request 607682 from security 
OBS-URL: https://build.opensuse.org/request/show/607682
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=5
 2018-05-16 09:42:47 +00:00
Torsten Gruner
0c4675d82d Accepting request 607426 from home:kbabioch:branches:security 
- Update to version 1.0.7:
  - Add authpending_file to signal authentication activity
  - Add nodetect to skip to avoid unnecessary cue messages

OBS-URL: https://build.opensuse.org/request/show/607426
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=12
 2018-05-15 19:38:16 +00:00
Dominique Leuenberger
e9bd1e9c99 Accepting request 597883 from security 
OBS-URL: https://build.opensuse.org/request/show/597883
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=4
 2018-04-23 13:26:01 +00:00
Torsten Gruner
78d46b3633 Accepting request 597753 from home:kbabioch:branches:security 
- Update to version 1.0.6:
  - Fix an issue when using syslog as a debug facility.
  - Do not honor cue if no sutable device is found.

OBS-URL: https://build.opensuse.org/request/show/597753
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=10
 2018-04-18 19:39:42 +00:00
Torsten Gruner
0c75746025 Accepting request 597703 from home:jengelh:branches:security 
- Update descriptions, trim bias and other-OS stuff.
- Remove extraneous --bindir.

OBS-URL: https://build.opensuse.org/request/show/597703
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=9
 2018-04-18 19:34:49 +00:00
Torsten Gruner
09f91ce435 Accepting request 597321 from home:kbabioch:branches:security 
- Update to version 1.0.5:
  - General bugfixes and quality-of-life improvements.

OBS-URL: https://build.opensuse.org/request/show/597321
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=8
 2018-04-17 20:25:49 +00:00
Dominique Leuenberger
557db43c4d Accepting request 352574 from security 
1

OBS-URL: https://build.opensuse.org/request/show/352574
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=3
 2016-01-08 14:23:59 +00:00
Torsten Gruner
a3599a3b4f Accepting request 352573 from home:Simmphonie:yubico 
OBS-URL: https://build.opensuse.org/request/show/352573
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=6
 2016-01-08 12:01:37 +00:00
Dominique Leuenberger
60b4300b6b Accepting request 343402 from security 
1

OBS-URL: https://build.opensuse.org/request/show/343402
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=2
 2015-11-11 09:31:55 +00:00
Torsten Gruner
23f7749da9 Accepting request 343400 from home:Simmphonie:yubico 
OBS-URL: https://build.opensuse.org/request/show/343400
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=4
 2015-11-10 12:11:08 +00:00
Dominique Leuenberger
60a8e2f2b1 Accepting request 336996 from security 
OBS-URL: https://build.opensuse.org/request/show/336996
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_u2f?expand=0&rev=1
 2015-10-14 14:44:31 +00:00
Torsten Gruner
b51c498871 Accepting request 336967 from home:Simmphonie:yubico 
OBS-URL: https://build.opensuse.org/request/show/336967
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=2
 2015-10-07 11:13:59 +00:00
Marcus Meissner
40f002c0f6 Accepting request 317249 from home:Simmphonie:yubico 
OBS-URL: https://build.opensuse.org/request/show/317249
OBS-URL: https://build.opensuse.org/package/show/security/pam_u2f?expand=0&rev=1
 2015-07-20 08:48:40 +00:00