[Secure-testing-team] Bug#789986: pam: CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix module
Salvatore Bonaccorso
carnil at debian.org
Thu Jun 25 20:33:21 UTC 2015
Source: pam
Version: 1.1.3-7
Severity: important
Tags: security upstream fixed-upstream
Hi,
the following vulnerability was published for pam.
CVE-2015-3238[0]:
DoS/user enumeration due to blocking pipe in pam_unix module
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-3238
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1228571
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the Secure-testing-team
mailing list