ELSA-2024-11250

ULN >
Oracle Linux Errata repository >
ELSA-2024-11250

ELSA-2024-11250 - pam security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-12-19

Description

[1.5.1-21.0.1]
- pam_access: clean up the remote host matching code [Orabug: 36771903]
- pam_limits: fix use after free in pam_sm_open_session [Orabug: 36406534]

[1.5.1-21]
- pam_unix: always run the helper to obtain shadow password file entries.
CVE-2024-10041. Resolves: RHEL-62880

[1.5.1-20]
- libpam: support long lines in service files. Resolves: RHEL-40705

[1.5.1-19]
- pam_namespace: protect_dir(): use O_DIRECTORY to prevent local DoS
situations. CVE-2024-22365. Resolves: RHEL-21244

[1.5.1-18]
- libpam: use getlogin() from libc and not utmp. Resolves: RHEL-16727
- pam_access: handle hostnames in access.conf. Resolves: RHEL-22300

[1.5.1-17]
- pam_faillock: create tallydir before creating tallyfile. Resolves: RHEL-20943

[1.5.1-16]
- libpam: use close_range() to close file descriptors. Resolves: RHEL-5099
- fix formatting of audit messages. Resolves: RHEL-5100

[1.5.1-15]
- pam_misc: make length of misc_conv() configurable and set to 4096. Resolves: #2215007

Related CVEs

CVE-2024-10041

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	pam-1.5.1-21.0.1.el9_5.src.rpm	ede0f0c38061589a62fd0679869b0bd6	-	ol9_aarch64_appstream
	pam-1.5.1-21.0.1.el9_5.src.rpm	ede0f0c38061589a62fd0679869b0bd6	-	ol9_aarch64_baseos_latest
	pam-1.5.1-21.0.1.el9_5.src.rpm	ede0f0c38061589a62fd0679869b0bd6	-	ol9_aarch64_u5_baseos_patch
	pam-1.5.1-21.0.1.el9_5.aarch64.rpm	312dbdbf6e033934733b33501827f45e	-	ol9_aarch64_baseos_latest
	pam-1.5.1-21.0.1.el9_5.aarch64.rpm	312dbdbf6e033934733b33501827f45e	-	ol9_aarch64_u5_baseos_patch
	pam-devel-1.5.1-21.0.1.el9_5.aarch64.rpm	902bfe4e3c1417f95c86040c6d8329f3	-	ol9_aarch64_appstream
	pam-docs-1.5.1-21.0.1.el9_5.aarch64.rpm	881cfa29d082ad599f1422ab584e73fd	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	pam-1.5.1-21.0.1.el9_5.src.rpm	ede0f0c38061589a62fd0679869b0bd6	-	ol9_x86_64_appstream
	pam-1.5.1-21.0.1.el9_5.src.rpm	ede0f0c38061589a62fd0679869b0bd6	-	ol9_x86_64_baseos_latest
	pam-1.5.1-21.0.1.el9_5.src.rpm	ede0f0c38061589a62fd0679869b0bd6	-	ol9_x86_64_u5_baseos_patch
	pam-1.5.1-21.0.1.el9_5.i686.rpm	9742a40021a8e14fbbba56d2e6fd1941	-	ol9_x86_64_baseos_latest
	pam-1.5.1-21.0.1.el9_5.i686.rpm	9742a40021a8e14fbbba56d2e6fd1941	-	ol9_x86_64_u5_baseos_patch
	pam-1.5.1-21.0.1.el9_5.x86_64.rpm	96c5a3c94a0bd9d58f04f208434cd41c	-	ol9_x86_64_baseos_latest
	pam-1.5.1-21.0.1.el9_5.x86_64.rpm	96c5a3c94a0bd9d58f04f208434cd41c	-	ol9_x86_64_u5_baseos_patch
	pam-devel-1.5.1-21.0.1.el9_5.i686.rpm	05c8b831539006f669dead4b7939f131	-	ol9_x86_64_appstream
	pam-devel-1.5.1-21.0.1.el9_5.x86_64.rpm	418a6e179cdc78be928fa0ecb6e131c5	-	ol9_x86_64_appstream
	pam-docs-1.5.1-21.0.1.el9_5.x86_64.rpm	4544454cfcd69a9361cd62203370cbdf	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

Oracle customers - enter a support request
Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691