[El-errata] ELSA-2013-0521 Moderate: Oracle Linux 6 pam security, bug fix, and enhancement update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon Feb 25 10:35:05 PST 2013


Oracle Linux Security Advisory ELSA-2013-0521

https://rhn.redhat.com/errata/RHSA-2013-0521.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
pam-1.1.1-13.el6.i686.rpm
pam-devel-1.1.1-13.el6.i686.rpm

x86_64:
pam-1.1.1-13.el6.i686.rpm
pam-1.1.1-13.el6.x86_64.rpm
pam-devel-1.1.1-13.el6.i686.rpm
pam-devel-1.1.1-13.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/pam-1.1.1-13.el6.src.rpm



Description of changes:

[1.1.1-13]
- fix environment file handling problems - CVE-2011-3148 (#746619) and
   CVE-2011-3148 (#746620)

[1.1.1-12]
- add character sequence test to pam_cracklib
- drop unused difignore option from pam_cracklib (#811243)
- add enforce_for_root option to pam_cracklib (#588893)
- mention limits.d in the limits.conf(5) manpage (#723297)
- add ability to lock out inactive accounts to pam_lastlog
- fix require_selinux option in pam_namespace (#750601)
- add mntopts flag for tmpfs polyinstantiation method
- preserve authtok_type in pam_get_authtok() (#811168)
- fix username mismatch in pam_unix remember feature (#815516)
- relax restriction of root in pam_pwhistory
- relax soft nproc limit for root in 90-nproc.conf

[1.1.1-11]
- additional password checks in pam_cracklib

-------------- next part --------------



More information about the El-errata mailing list