| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | debian/patches/pam_unix_dont_trust_chkpwd_caller.patch: fix this patch | Steve Langasek | 2019-01-08 |
| | | | | | | | | to call setregid() instead of always returning an error on username mismatch in unix_chkpwd, needed in the SELinux case and in some corner cases with the broken_shadow option. Thanks to Michael Spang for the analysis. Closes: #543589. | ||
| * | New patch pam_unix_dont_trust_chkpwd_caller.patch, rolling back an | Steve Langasek | 2019-01-03 |
| upstream change that causes unix_chkpwd to assume that setuid(getuid()) is sufficient to drop permissions and attempt any authentication on behalf of the user. | |||
 |
index : pam | |
| Debian dgit repo for package pam |
| summaryrefslogtreecommitdiff |