[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[linux-security] pam bugs
- To: linux-security
- Subject: [linux-security] pam bugs
- Date: Mon, 11 Dec 2000 15:08:20 -0800 (PST)
Topic
=====
Buffer overflow in pam.
Problem Description
===================
RedHat's pam package contains a modules pam_localuser. Although this module
is not used in any default configurations, the version included was vulnerable
to a buffer overflow.
The update removes this vulnerability and fixes various other bugs.
Affected Systems
================
RedHat (and distributions derived from Redhat; Mandrake?)
Solution
========
RedHat 6.x
rpm -Fvh pam-0.72-20.6.x.i386.rpm
RedHat 7.0
rpm -Fvh pam-0.72-37.i386.rpm