ELSA-2024-3163

ULN >
Oracle Linux Errata repository >
ELSA-2024-3163

ELSA-2024-3163 - pam security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-05-23

Description

[1.3.1-33]
- pam_namespace: protect_dir(): use O_DIRECTORY to prevent local DoS
situations. CVE-2024-22365. Resolves: RHEL-21242

[1.3.1-32]
- pam_access: handle hostnames in access.conf. Resolves: RHEL-3374

[1.3.1-31]
- pam_faillock: create tallydir before creating tallyfile. Resolves: RHEL-19810

[1.3.1-30]
- pam_unix: enable bcrypt. Resolves: RHEL-5057

Related CVEs

CVE-2024-22365

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	pam-1.3.1-33.el8.src.rpm	4000520ddbf70fc9da668349e308f55b06d12b2993249416f1cc999d671e8faa	-	ol8_aarch64_baseos_latest
	pam-1.3.1-33.el8.src.rpm	4000520ddbf70fc9da668349e308f55b06d12b2993249416f1cc999d671e8faa	-	ol8_aarch64_u10_baseos_base
	pam-1.3.1-33.el8.aarch64.rpm	9a5a271860f4cba71179cfeb79e4f765deb1be168139fd8439df7a629fb78e1d	-	ol8_aarch64_baseos_latest
	pam-1.3.1-33.el8.aarch64.rpm	9a5a271860f4cba71179cfeb79e4f765deb1be168139fd8439df7a629fb78e1d	-	ol8_aarch64_u10_baseos_base
	pam-devel-1.3.1-33.el8.aarch64.rpm	efb75933116be4a2142a618fce594cd2287de3cac1d8b5a9ca108b0f199288d9	-	ol8_aarch64_baseos_latest
	pam-devel-1.3.1-33.el8.aarch64.rpm	efb75933116be4a2142a618fce594cd2287de3cac1d8b5a9ca108b0f199288d9	-	ol8_aarch64_u10_baseos_base

Oracle Linux 8 (x86_64)	pam-1.3.1-33.el8.src.rpm	4000520ddbf70fc9da668349e308f55b06d12b2993249416f1cc999d671e8faa	-	ol8_x86_64_baseos_latest
	pam-1.3.1-33.el8.src.rpm	4000520ddbf70fc9da668349e308f55b06d12b2993249416f1cc999d671e8faa	-	ol8_x86_64_u10_baseos_base
	pam-1.3.1-33.el8.i686.rpm	c6da0016aed7007b76ab8c51b7d3e1c00b1ce739a33e731d7a5e9f640f89febc	-	ol8_x86_64_baseos_latest
	pam-1.3.1-33.el8.i686.rpm	c6da0016aed7007b76ab8c51b7d3e1c00b1ce739a33e731d7a5e9f640f89febc	-	ol8_x86_64_u10_baseos_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_23.1.16.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_24.1.2.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_24.1.5.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_24.1.6.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	exadata_dbserver_25.1.0.0.0_x86_64_base
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	ol8_x86_64_baseos_latest
	pam-1.3.1-33.el8.x86_64.rpm	eb411cedfbd3e48266e49527d304c291c69d43a040c886c8c3b715fc24080556	-	ol8_x86_64_u10_baseos_base
	pam-devel-1.3.1-33.el8.i686.rpm	66f367fa2cf40e8dd2ce7ef8f0e40f8e18005a5936a9605696ab755be6423425	-	ol8_x86_64_baseos_latest
	pam-devel-1.3.1-33.el8.i686.rpm	66f367fa2cf40e8dd2ce7ef8f0e40f8e18005a5936a9605696ab755be6423425	-	ol8_x86_64_u10_baseos_base
	pam-devel-1.3.1-33.el8.x86_64.rpm	bd4dbe25a73c63b0d34ced1c159e3bbad5d8f91ec85aa4c278ff2d4d8bcebd8f	-	ol8_x86_64_baseos_latest
	pam-devel-1.3.1-33.el8.x86_64.rpm	bd4dbe25a73c63b0d34ced1c159e3bbad5d8f91ec85aa4c278ff2d4d8bcebd8f	-	ol8_x86_64_u10_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691