diff options
author | Steve Langasek <vorlon@debian.org> | 2015-08-21 17:07:44 -0700 |
---|---|---|
committer | Steve Langasek <vorlon@debian.org> | 2019-01-08 22:12:11 -0800 |
commit | f97bd8799d7c811d50f57bf0677b24e0490ae5be (patch) | |
tree | 0f06a4021ea002a8f8df0fbb56ac4f0c1971abff /debian/changelog | |
parent | 3fb0d1c3c727bd5b2e01fdc3e59e8d48bc384ce3 (diff) | |
parent | b0b970d872cb7b9917521eb203798f01c30cac86 (diff) |
Acknowledge security NMU
Diffstat (limited to 'debian/changelog')
-rw-r--r-- | debian/changelog | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 568a61c5..7512ec77 100644 --- a/debian/changelog +++ b/debian/changelog @@ -7,9 +7,20 @@ pam (1.1.8-4) UNRELEASED; urgency=medium * d/applied-patches/pam-limits-nofile-fd-setsize-cap: cap the default soft nofile limit read from pid 1 to FD_SETSIZE. Thanks to Robie Basak <robie.basak@ubuntu.com> for the patch. Closes: #783105. + * Acknowledge security NMU. -- Steve Langasek <vorlon@debian.org> Wed, 09 Apr 2014 14:04:10 -0700 +pam (1.1.8-3.1) unstable; urgency=high + + * Non-maintainer upload by the Security Team. + * Fix CVE-2013-7041: case-insensitive comparison used for verifying + passwords in the pam_userdb module (closes: #731368). + * Fix CVE-2014-2583: multiple directory traversal issues in the + pam_timestamp module (closes: 757555) + + -- Michael Gilbert <mgilbert@debian.org> Sat, 09 Aug 2014 09:50:42 +0000 + pam (1.1.8-3) unstable; urgency=low * debian/rules: On hurd, link libpam explicitly with -lpthread since glibc |