Описание
ELSA-2015-1640: pam security update (MODERATE)
[1.1.1-20.1]
- fix CVE-2015-3238 - DoS due to blocking pipe with very long password
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
pam
1.1.1-20.el6_7.1
pam-devel
1.1.1-20.el6_7.1
Oracle Linux i686
pam
1.1.1-20.el6_7.1
pam-devel
1.1.1-20.el6_7.1
Oracle Linux 7
Oracle Linux x86_64
pam
1.1.8-12.el7_1.1
pam-devel
1.1.8-12.el7_1.1
Связанные CVE
Связанные уязвимости
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
The _unix_run_helper_binary function in the pam_unix module in Linux-PAM (aka pam) before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service (hang) via a large password.
The _unix_run_helper_binary function in the pam_unix module in Linux-P ...
