Adding patchinfo patchinfo.20250121152439987213.154186277494808

2025-03-04 09:24:45 +01:00 · 2025-03-04 09:24:45 +01:00 · 4dcaa10837
commit 4dcaa10837
parent 43908aed0b
2 changed files with 28 additions and 1 deletions
--- a/2
+++ b/2
@ -1 +1 @@
-Subproject commit 66ae4f258a099cc1906aea811958af9f4f2c85df
+Subproject commit 021baffd55b5a5b0dbc8055e7944992d1b0ba991
--- a/patchinfo.20250121152439987213.154186277494808/_patchinfo
+++ b/patchinfo.20250121152439987213.154186277494808/_patchinfo
@ -0,0 +1,27 @@
+<patchinfo>
+  <!-- generated from request(s) 358761 -->
+  <issue tracker="cve" id="2025-23013"/>
+  <issue tracker="bnc" id="1233517"/>
+  <packager>pperego</packager>
+  <rating>moderate</rating>
+  <category>security</category>
+  <summary>Security update for pam_u2f</summary>
+  <description>This update for pam_u2f fixes the following issues:
+
+- update to 1.3.2:
+  * Relax authfile permission check to a warning instead of an error to prevent
+    a breaking change locking existing users out of their systems. 
+
+- update to 1.3.1:
+  * CVE-2025-23013: Fixed problematic PAM_IGNORE return values in `pam_sm_authenticate()`(bsc#1233517).
+  * Changed return value when nouserok is enabled and the user has no
+  credentials, PAM_IGNORE is used instead of PAM_SUCCESS.
+  * Hardened checks of authfile permissions.
+  * Hardened checks for nouserok.
+  * Improved debug messages.
+  * Improved documentation. 
+
+</description>
+  <package>pam_u2f</package>
+  <seperate_build_arch/>
+</patchinfo>