[Pkg-ltsp-devel] libpam-sshauth_0.3.1-1+deb8u1_allonly.changes ACCEPTED into proposed-updates->stable-new, proposed-updates
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Thu May 5 22:17:12 UTC 2016
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 04 May 2016 10:55:45 +0200
Source: libpam-sshauth
Binary: libpam-sshauth
Architecture: source
Version: 0.3.1-1+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: LTSP Debian Maintainers <pkg-ltsp-devel at lists.alioth.debian.org>
Changed-By: Salvatore Bonaccorso <carnil at debian.org>
Description:
libpam-sshauth - authenticate using an SSH server
Changes:
libpam-sshauth (0.3.1-1+deb8u1) jessie-security; urgency=high
.
* Non-maintainer upload by the Security Team.
* CVE-2016-4422: local root privilege escalation.
Return PAM_AUTH_ERR when a system user. This prevents the pam module
from returning success without asking for authentication credentials.
Thanks to Vagrant Cascadian <vagrant at debian.org>
Checksums-Sha1:
a67889bf7fd740af50a0923bd6ab427752942962 2004 libpam-sshauth_0.3.1-1+deb8u1.dsc
b87b22e997891331686824c639b34b44c9a34704 22548 libpam-sshauth_0.3.1.orig.tar.gz
38b595988f720d2349fd78a288e5493c6e7f6220 2392 libpam-sshauth_0.3.1-1+deb8u1.debian.tar.xz
Checksums-Sha256:
be980dfaf681836ca1b0a10d5dcea68a154b0e9d6c3cb02f71b87887fc63fc80 2004 libpam-sshauth_0.3.1-1+deb8u1.dsc
0537042c65bb5bdf3f4e25536c678f2057869ca3a8aabe4f0dc871b378d3f123 22548 libpam-sshauth_0.3.1.orig.tar.gz
9d50d034bb629fe745313b6eaf6e71f54c2f0a4ef5a00dd85a40474c033e9a82 2392 libpam-sshauth_0.3.1-1+deb8u1.debian.tar.xz
Files:
06fa854b14036963fa32ee6c76dc1fb0 2004 admin extra libpam-sshauth_0.3.1-1+deb8u1.dsc
162addf99abfe16ea1f60d7a9efdef5a 22548 admin extra libpam-sshauth_0.3.1.orig.tar.gz
d30a74793a99f1077fce6863ff7366ad 2392 admin extra libpam-sshauth_0.3.1-1+deb8u1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=S1NN
-----END PGP SIGNATURE-----
Thank you for your contribution to Debian.
More information about the Pkg-ltsp-devel
mailing list