ELSA-2017-2285

ULN >
Oracle Linux Errata repository >
ELSA-2017-2285

ELSA-2017-2285 - authconfig security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2017-08-07

Description

[6.2.8-30]
- do not use /usr and LIBDIR together (#1455233)

[6.2.8-29]
- update translations (#1449625)

[6.2.8-28]
- ignore PAM_IGNORE for pam_succeed_if so application do not fail in pam_setcred() (#1450425)

[6.2.8-27]
- fix typo in the patch for CVE-2017-7488 (#1441604)

[6.2.8-26]
- CVE-2017-7488 authconfig: Information leak when SSSD is used for authentication against remote server (#1441604)

[6.2.8-25]
- faillock: change preauth phase to required and fix arguments handling (#1334449)

[6.2.8-24]
- faillock: add preauth phase so the account is actually blocked (#1334449)

[6.2.8-23]
- sssd: do not write SSSD PAM if there is no sssd.conf present (#1443949)

[6.2.8-21]
- sssd: do not ask for password with smartcards (#1441374)

[6.2.8-20]
- sssd: catch NoServiceError exception (#1441549)

[6.2.8-19]
- Add pam_faillock support (#1334449)

[6.2.8-18]
- Add SSSD Smartcard support (#1378943)

[6.2.8-17]
- Enable SSSD authentication also for local users (#1329598)

[6.2.8-16]
- Note that SSSD configuration may change with --updateall (#1339434)

[6.2.8-15]
- change pam module location from /lib[64] to /usr/lib[64] (#1414494)

Related CVEs

CVE-2017-7488

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_aarch64_beta
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_aarch64_latest
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_aarch64_u5_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_aarch64_u7_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_aarch64_u8_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_aarch64_u9_base
	authconfig-6.2.8-30.el7.aarch64.rpm	a9b20bf3c18adec8eaf0efc239ec6ed911f284024e2768deab17f3143a3ca112	-	ol7_aarch64_beta
	authconfig-6.2.8-30.el7.aarch64.rpm	a9b20bf3c18adec8eaf0efc239ec6ed911f284024e2768deab17f3143a3ca112	-	ol7_aarch64_latest
	authconfig-6.2.8-30.el7.aarch64.rpm	a9b20bf3c18adec8eaf0efc239ec6ed911f284024e2768deab17f3143a3ca112	-	ol7_aarch64_u5_base
	authconfig-6.2.8-30.el7.aarch64.rpm	a9b20bf3c18adec8eaf0efc239ec6ed911f284024e2768deab17f3143a3ca112	-	ol7_aarch64_u7_base
	authconfig-6.2.8-30.el7.aarch64.rpm	a9b20bf3c18adec8eaf0efc239ec6ed911f284024e2768deab17f3143a3ca112	-	ol7_aarch64_u8_base
	authconfig-6.2.8-30.el7.aarch64.rpm	a9b20bf3c18adec8eaf0efc239ec6ed911f284024e2768deab17f3143a3ca112	-	ol7_aarch64_u9_base
	authconfig-gtk-6.2.8-30.el7.aarch64.rpm	b12e832c603efd28c70005f34f1fbebb4d1f516b4ec1374c8a06cd714614dfdc	-	ol7_aarch64_beta
	authconfig-gtk-6.2.8-30.el7.aarch64.rpm	b12e832c603efd28c70005f34f1fbebb4d1f516b4ec1374c8a06cd714614dfdc	-	ol7_aarch64_latest
	authconfig-gtk-6.2.8-30.el7.aarch64.rpm	b12e832c603efd28c70005f34f1fbebb4d1f516b4ec1374c8a06cd714614dfdc	-	ol7_aarch64_u5_base
	authconfig-gtk-6.2.8-30.el7.aarch64.rpm	b12e832c603efd28c70005f34f1fbebb4d1f516b4ec1374c8a06cd714614dfdc	-	ol7_aarch64_u7_base
	authconfig-gtk-6.2.8-30.el7.aarch64.rpm	b12e832c603efd28c70005f34f1fbebb4d1f516b4ec1374c8a06cd714614dfdc	-	ol7_aarch64_u8_base
	authconfig-gtk-6.2.8-30.el7.aarch64.rpm	b12e832c603efd28c70005f34f1fbebb4d1f516b4ec1374c8a06cd714614dfdc	-	ol7_aarch64_u9_base

Oracle Linux 7 (x86_64)	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_beta
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_latest
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_latest_archive
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u4_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u5_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u5_developer
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u6_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u7_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u8_base
	authconfig-6.2.8-30.el7.src.rpm	05ed652c256da25e6ff02becd99baaf44ca85497c3f13b7ad1598f87afb8a964	-	ol7_x86_64_u9_base
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_beta
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_latest
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_latest_archive
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u4_base
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u5_base
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u5_developer
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u6_base
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u7_base
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u8_base
	authconfig-6.2.8-30.el7.x86_64.rpm	e85c8645a9502f66b4c92d041795733550b2dca7e0cd66537b7ff9925a2dc355	-	ol7_x86_64_u9_base
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_beta
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_latest
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_latest_archive
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u4_base
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u5_base
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u5_developer
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u6_base
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u7_base
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u8_base
	authconfig-gtk-6.2.8-30.el7.x86_64.rpm	74aa425cdc22fd651e1373cb89ff5de67034c5bf55c4759767088a3b5fd84ed8	-	ol7_x86_64_u9_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691