Ubuntu
pam package

~ubuntu-core-dev/ubuntu/+source/pam/+git/pam:precise

  1. Git
  2. lp:~ubuntu-core-dev/ubuntu/+source/pam/+git/pam
  3. precise
Last commit made on 2019-02-13
Get this branch:
git clone -b precise https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/pam/+git/pam
Members of Ubuntu Core Development Team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
precise
Repository:
lp:~ubuntu-core-dev/ubuntu/+source/pam/+git/pam

Recent commits

15c4df6... by Tyler Hicks

Import Debian changes 1.1.3-7ubuntu2.3

pam (1.1.3-7ubuntu2.3) precise-security; urgency=medium

  * SECURITY REGRESSION: multiarch update issue (LP: #1558597)
    - debian/patches-applied/cve-2015-3238.patch: Readd the manpage XML
      changes and also add the regenerated man pages to the patch. It is
      required to add the regenerated man pages to the patch because the build
      dependencies to regenerate the man pages are only installed during i386
      builds.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch: Add
      the changes after regenerating pam_umask.8 to the patch for the reasons
      mentioned above.

1e581a4... by Marc Deslauriers

Import Debian changes 1.1.3-7ubuntu2.2

pam (1.1.3-7ubuntu2.2) precise-security; urgency=medium

  * SECURITY REGRESSION: multiarch update issue (LP: #1558114)
    - debian/patches-applied/cve-2015-3238.patch: removed manpage changes
      so they don't get regenerated during build.
    - CVE-2015-3238

b670002... by Marc Deslauriers

Import Debian changes 1.1.3-7ubuntu2.1

pam (1.1.3-7ubuntu2.1) precise-security; urgency=medium

  * SECURITY UPDATE: pam_userdb case-insensitive search issue
    - debian/patches-applied/cve-2013-7041.patch: fix password hash
      comparison in modules/pam_userdb/pam_userdb.c.
    - CVE-2013-7041
  * SECURITY UPDATE: directory traversal issue in pam_timestamp
    - debian/patches-applied/cve-2014-2583.patch: fix potential directory
      traversal issue in modules/pam_timestamp/pam_timestamp.c.
    - CVE-2014-2583
  * SECURITY UPDATE: username enumeration via large passwords
    - debian/patches-applied/cve-2015-3238.patch: limit password size to
      prevent a helper function hang in modules/pam_exec/pam_exec.8.xml,
      modules/pam_exec/pam_exec.c, modules/pam_unix/pam_unix.8.xml,
      modules/pam_unix/pam_unix_passwd.c, modules/pam_unix/passverify.c,
      modules/pam_unix/passverify.h, modules/pam_unix/support.c.
    - CVE-2015-3238

54ce84f... by Steve Langasek

releasing version 1.1.3-7ubuntu2

b86af08... by Steve Langasek

No-change rebuild with gzip 1.4-1ubuntu2 to get multiarch-clean
compression of manpages. LP: #871083.

6471bdc... by Steve Langasek

releasing version 1.1.3-7ubuntu1

333f4c0... by Steve Langasek

Merge version 1.1.3-7 from Debian

ec939fb... by Steve Langasek

releasing version 1.1.3-6ubuntu1

7793c30... by Steve Langasek

Merge version 1.1.3-6 from Debian unstable

6a264ff... by Steve Langasek

Build-depend on libfl-dev in addition to flex, for cross-building
support.