ELSA-2024-10244

ELSA-2024-10244 - pam:1.5.1 security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2024-11-25

Description


[1.5.1-22.0.1]
- pam_access: clean up the remote host matching code [Orabug: 36771903]
- pam_limits: fix use after free in pam_sm_open_session [Orabug: 36406534]

[1.5.1-22]
- pam_access: rework resolving of tokens as hostname.
Resolves: CVE-2024-10963 and RHEL-66245

[1.5.1-21]
- pam_unix: always run the helper to obtain shadow password file entries.
CVE-2024-10041. Resolves: RHEL-62880


Related CVEs


CVE-2024-10963

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) pam-1.5.1-22.0.1.el9_5.src.rpm6814cd42addf0918de7e789cc5b70180-ol9_aarch64_appstream
pam-1.5.1-22.0.1.el9_5.src.rpm6814cd42addf0918de7e789cc5b70180-ol9_aarch64_baseos_latest
pam-1.5.1-22.0.1.el9_5.src.rpm6814cd42addf0918de7e789cc5b70180-ol9_aarch64_u5_baseos_patch
pam-1.5.1-22.0.1.el9_5.aarch64.rpmd4a5d13c5381779a01af67232e248a67-ol9_aarch64_baseos_latest
pam-1.5.1-22.0.1.el9_5.aarch64.rpmd4a5d13c5381779a01af67232e248a67-ol9_aarch64_u5_baseos_patch
pam-devel-1.5.1-22.0.1.el9_5.aarch64.rpm2d3e29f78625d9bd8f924ffd4278c91a-ol9_aarch64_appstream
pam-docs-1.5.1-22.0.1.el9_5.aarch64.rpm613514752bc44b59ca25cc4a87493110-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) pam-1.5.1-22.0.1.el9_5.src.rpm6814cd42addf0918de7e789cc5b70180-ol9_x86_64_appstream
pam-1.5.1-22.0.1.el9_5.src.rpm6814cd42addf0918de7e789cc5b70180-ol9_x86_64_baseos_latest
pam-1.5.1-22.0.1.el9_5.src.rpm6814cd42addf0918de7e789cc5b70180-ol9_x86_64_u5_baseos_patch
pam-1.5.1-22.0.1.el9_5.i686.rpmd2c1b6cc79d845b71e38747154446485-ol9_x86_64_baseos_latest
pam-1.5.1-22.0.1.el9_5.i686.rpmd2c1b6cc79d845b71e38747154446485-ol9_x86_64_u5_baseos_patch
pam-1.5.1-22.0.1.el9_5.x86_64.rpm13ab62d83f685ba2f15c0bb9498755b8-ol9_x86_64_baseos_latest
pam-1.5.1-22.0.1.el9_5.x86_64.rpm13ab62d83f685ba2f15c0bb9498755b8-ol9_x86_64_u5_baseos_patch
pam-devel-1.5.1-22.0.1.el9_5.i686.rpme7540c15a21cfff36c6e064f7184b2c3-ol9_x86_64_appstream
pam-devel-1.5.1-22.0.1.el9_5.x86_64.rpmb4460139e61a857f2a74e8693602504c-ol9_x86_64_appstream
pam-docs-1.5.1-22.0.1.el9_5.x86_64.rpm47076e98f74b75b51d25a45faf599487-ol9_x86_64_appstream


This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

software.hardware.complete