Description: fix cve-2011-4708: .pam_environment privilege issue Index: pam.debian/modules/pam_env/pam_env.c =================================================================== --- pam.debian.orig/modules/pam_env/pam_env.c +++ pam.debian/modules/pam_env/pam_env.c @@ -10,7 +10,7 @@ #define DEFAULT_READ_ENVFILE 1 #define DEFAULT_USER_ENVFILE ".pam_environment" -#define DEFAULT_USER_READ_ENVFILE 1 +#define DEFAULT_USER_READ_ENVFILE 0 #include "config.h" Index: pam.debian/modules/pam_env/pam_env.8.xml =================================================================== --- pam.debian.orig/modules/pam_env/pam_env.8.xml +++ pam.debian/modules/pam_env/pam_env.8.xml @@ -147,7 +147,7 @@ Turns on or off the reading of the user specific environment - file. 0 is off, 1 is on. By default this option is on. + file. 0 is off, 1 is on. By default this option is off.