28 lines
982 B
Plaintext
28 lines
982 B
Plaintext
|
<patchinfo>
|
||
|
|
<!-- generated from request(s) 358761 -->
|
||
|
|
<issue tracker="cve" id="2025-23013"/>
|
||
|
|
<issue tracker="bnc" id="1233517"/>
|
||
|
|
<packager>pperego</packager>
|
||
|
|
<rating>moderate</rating>
|
||
|
|
<category>security</category>
|
||
|
|
<summary>Security update for pam_u2f</summary>
|
||
|
|
<description>This update for pam_u2f fixes the following issues:
|
||
|
|
|
||
|
|
- update to 1.3.2:
|
||
|
|
* Relax authfile permission check to a warning instead of an error to prevent
|
||
|
|
a breaking change locking existing users out of their systems.
|
||
|
|
|
||
|
|
- update to 1.3.1:
|
||
|
|
* CVE-2025-23013: Fixed problematic PAM_IGNORE return values in `pam_sm_authenticate()`(bsc#1233517).
|
||
|
|
* Changed return value when nouserok is enabled and the user has no
|
||
|
|
credentials, PAM_IGNORE is used instead of PAM_SUCCESS.
|
||
|
|
* Hardened checks of authfile permissions.
|
||
|
|
* Hardened checks for nouserok.
|
||
|
|
* Improved debug messages.
|
||
|
|
* Improved documentation.
|
||
|
|
|
||
|
|
</description>
|
||
|
|
<package>pam_u2f</package>
|
||
|
|
<seperate_build_arch/>
|
||
|
|
</patchinfo>
|