Linux-PAM 1.5.1 released

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



I'm happy to announce that Linux-PAM 1.5.1 has been released.

Noteworthy changes in Linux-PAM 1.5.1:

* pam_unix: fixed CVE-2020-27780 - authentication bypass when a user
            doesn't exist and root password is blank
* pam_faillock: added nodelay option to not set pam_fail_delay
* pam_wheel: use pam_modutil_user_in_group to check for the group membership
             with getgrouplist where it is available

Release link with the tarballs and their signatures for download:

Dmitry V. Levin, Tomas Mraz, Thorsten Kukuk

Attachment: signature.asc
Description: PGP signature

Pam-list mailing list

[Index of Archives]     [Fedora Users]     [Kernel]     [Red Hat Install]     [Linux for the blind]     [Gimp]

  Powered by Linux