Adding patchinfo patchinfo.20250225155631461773.154186277494808

2025-02-26 14:20:32 +01:00 · 2025-02-26 14:20:32 +01:00 · 0ab6805924
commit 0ab6805924
parent 4fd384b7d0
3 changed files with 17 additions and 2 deletions
--- a/.gitmodules
+++ b/.gitmodules
@ -7086,7 +7086,7 @@
 	url = ../../pool/pcsc-tools
 [submodule "pam_pkcs11"]
 	path = pam_pkcs11
-	url = ../../pool/pam_pkcs11
+	url = ../../ALP-pool/pam_pkcs11
 [submodule "opensc"]
 	path = opensc
 	url = ../../ALP-pool/opensc
--- a/2
+++ b/2
@ -1 +1 @@
-Subproject commit d502fedf3b507cdbbc58a915379d8cfb91bb0fdf
+Subproject commit 5525877da00630cdd027fe2ef42abee41fbdaed7
--- a/patchinfo.20250225155631461773.154186277494808/_patchinfo
+++ b/patchinfo.20250225155631461773.154186277494808/_patchinfo
@ -0,0 +1,15 @@
+<patchinfo>
+  <!-- generated from request(s) 360331 -->
+  <issue tracker="bnc" id="1236314">VUL-0: CVE-2025-24531: pam_pkcs11: version 0.6.12 has a regression returning PAM_IGNORE in many situations with possible authentication bypass</issue>
+  <issue tracker="cve" id="2025-24531"/>
+  <packager>ayankov</packager>
+  <rating>critical</rating>
+  <category>security</category>
+  <summary>Security update for pam_pkcs11</summary>
+  <description>This update for pam_pkcs11 fixes the following issues:
+
+- CVE-2025-24531: Fixed regression in version 0.6.12 returning PAM_IGNORE in many situations with possible authentication bypass (bsc#1236314).
+</description>
+  <package>pam_pkcs11</package>
+  <seperate_build_arch/>
+</patchinfo>