Stay Connected:

ELSA-2007-0737

ELSA-2007-0737 - pam security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2007-11-27

Description


[0.77-66.23]
- pam_cracklib should count the last char when computing difference (#267201)

[0.77-66.22]
- add pam_tally2 module (#228044)
- unset XAUTHORITY when appropriate (#228980)
- CVE-2007-1716 always decrement use count (#230823)
- reset priority only when specified in limits.conf (#232407)
- CVE-2007-3102 prevent audit log injection through user name (#247797)


Related CVEs


CVE-2007-1716
CVE-2007-3102

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 4 (i386) pam-0.77-66.23.src.rpm3778d9f9e7cf486c4b08d03dbe790b67ELBA-2010-0512
pam-0.77-66.23.i386.rpm9a3c2e85e9e8c0b248694e9380265680ELBA-2010-0512
pam-devel-0.77-66.23.i386.rpm644bca1edcbc9ad8ca56c72b459a8f18ELBA-2010-0512
Oracle Linux 4 (ia64) pam-0.77-66.23.src.rpm3778d9f9e7cf486c4b08d03dbe790b67ELBA-2010-0512
pam-0.77-66.23.i386.rpm9a3c2e85e9e8c0b248694e9380265680ELBA-2010-0512
pam-0.77-66.23.ia64.rpm53f96408c1ff162393deb56ac56a7ddcELBA-2010-0512
pam-devel-0.77-66.23.ia64.rpm3e42894e927c27685829a80d67099afcELBA-2010-0512
Oracle Linux 4 (x86_64) pam-0.77-66.23.src.rpm3778d9f9e7cf486c4b08d03dbe790b67ELBA-2010-0512
pam-0.77-66.23.i386.rpm9a3c2e85e9e8c0b248694e9380265680ELBA-2010-0512
pam-0.77-66.23.x86_64.rpmda614f0ce8a9a3fca8ea7c166ed2cfc1ELBA-2010-0512
pam-devel-0.77-66.23.i386.rpm644bca1edcbc9ad8ca56c72b459a8f18ELBA-2010-0512
pam-devel-0.77-66.23.x86_64.rpm92c6226fc1274d7ccf5a5ef63820ee13ELBA-2010-0512



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights