Skip to content

"SLC6X: system environment/base: pam

pam - An extensible library which provides authentication for applications

License: BSD and GPLv2+
Vendor: Scientific Linux CERN,
PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policy without
having to recompile programs that handle authentication.


pam-1.1.1-24.el6.i686 [658 KiB] Changelog by Tomáš Mráz (2016-12-20):
- pam_faillock: support permanent locking of user with
  unlock_time=never option
pam-1.1.1-22.el6.i686 [657 KiB] Changelog by Tomáš Mráz (2016-01-07):
- pam_tally2: added no_lockf_timeout option, do not use it
- pam_tally2: added debug option
- pam_tally2: do not create the log file as executable (#1186361)
- add manpage symlink for environment(5) (#1110258)
- pam_group: add support for Development/Debug syntax (#1114220)
pam-1.1.1-20.el6_7.1.i686 [657 KiB] Changelog by Tomáš Mráz (2015-08-04):
- fix CVE-2015-3238 - DoS due to blocking pipe with very long password
pam-1.1.1-20.el6.i686 [658 KiB] Changelog by Tomas Mraz (2014-07-17):
- make pam_pwhistory and pam_unix tolerant of opasswd file corruption
pam-1.1.1-17.el6.i686 [657 KiB] Changelog by Tomas Mraz (2013-10-04):
- pam_tty_audit: allow for runtime backwards compatibility with
  old kernels
pam-1.1.1-13.el6.i686 [657 KiB] Changelog by Tomas Mraz (2012-10-15):
- fix environment file handling problems - CVE-2011-3148 (#746619) and
  CVE-2011-3148 (#746620)
pam-1.1.1-10.el6_2.1.i686 [655 KiB] Changelog by Tomas Mraz (2012-04-05):
- additional password checks in pam_cracklib
pam-1.1.1-10.el6.i686 [655 KiB] Changelog by Tomas Mraz (2011-08-15):
- add relro to LDFLAGS and link setuid binaries
  with full relro (#727286)
pam-1.1.1-8.el6.i686 [658 KiB] Changelog by Tomas Mraz (2011-02-24):
- fix wrong auditing in pam_selinux and more small memory
  leaks in this module
pam-1.1.1-4.el6_0.1.i686 [644 KiB] Changelog by Tomas Mraz (2010-10-20):
- fix insecure dropping of priviledges in pam_xauth, pam_env,
  and pam_mail - CVE-2010-3316 (#637898), CVE-2010-3435 (#641335)
- fix insecure executing of scripts with user supplied environment
  variables in pam_namespace - CVE-2010-3853 (#643043)

Listing created by repoview