pam_access netgroup handling is incorrect in 1.1.1
Bug #513955 reported by
Andrew Pollock
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
pam (Debian) |
Fix Released
|
Unknown
|
|||
pam (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This was introduced in 1.1.0 and fixed upstream in 1.1.1
The full details are in the upstream bug at https:/
There's more than just the fix for this in 1.1.1, so you may wish to cherry-pick the pam_access.c fix from 1.1.1 and backport it to 1.1.0, depending on your change aversion at this stage of Lucid's development.
Related branches
Changed in pam (Debian): | |
status: | Unknown → New |
Changed in pam (Debian): | |
status: | New → Fix Released |
To post a comment you must log in.
This bug was fixed in the package pam - 1.1.1-1ubuntu1
---------------
pam (1.1.1-1ubuntu1) lucid; urgency=low
* Merge from Debian, remaining changes: libpam- modules. postinst: Add PATH to /etc/environment if it's not pam_env. conf. (should send to Debian). libpam0g. postinst: only ask questions during update-manager when patches- applied/ series: Ubuntu patches are as below ... patches- applied/ ubuntu- no-error- if-missingok: add a new, magic patches- applied/ ubuntu- rlimit_ nice_correction : Explicitly patches- applied/ pam_motd- legal-notice: display the contents of local/common- {auth,account, password} .md5sums: include the specific intrepid,jaunty md5sums for use during the session- noninteractive upgrade.
- debian/
present there or in /etc/security/
- debian/
there are non-default services running.
- debian/
- debian/
module option 'missingok' which will suppress logging of errors by
libpam if the module is not found.
- debian/
initialise RLIMIT_NICE rather than relying on the kernel limits.
- Change Vcs-Bzr to point at the Ubuntu branch.
- Make libpam-modules depend on base-files (>= 5.0.0ubuntu6), to ensure
run-parts does the right thing in /etc/update-motd.d.
- debian/
/etc/legal once, then set a flag in the user's homedir to prevent showing
it again.
- debian/
Ubuntu-
common-
pam (1.1.1-1) unstable; urgency=low
* New upstream version. section, namespace_ with_awk_ not_gawk, and securetty_ tty_check_ before_ user_check, which are included upstream. patches/ 026_pam_ unix_passwd_ unknown_ user: don't return USER_UNKNOWN on password change of a user that has no shadow entry, patches/ sys-types- include. patch: fix pam_modutil.h so that it can {7.4,8. 1} from the list, neither of which is present patches/ 007_modules_ pam_unix: recognize that *all* of the password
- restore proper netgroup handling in pam_access.
Closes: #567385, LP: #513955.
* Drop patches pam.d-manpage-
pam_
* debian/
PAM_
upstream now implements auto-creating the shadow entry in this case.
* Updated debconf translations:
- French, thanks to Jean-Baka Domelevo Entfellner <email address hidden>
(closes: #547039)
- Bulgarian, thanks to Damyan Ivanov <email address hidden> (closes: #562835)
* debian/
be included directly, without having to include sys/types.h first.
Closes: #556203.
* Add postgresql-8.3 to the list of services in need of restart on upgrade.
Closes: #563674.
* And drop postgresql-
in stable.
* debian/
hashes other than traditional crypt handle passwords >8 chars in length.
LP: #356766.
-- Steve Langasek <email address hidden> Mon, 01 Feb 2010 09:55:02 -0800