Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2025:02001-1

Опубликовано: 18 июн. 2025
Источник: suse-cvrf

Описание

Security update for pam

This update for pam fixes the following issues:

  • CVE-2025-6018: pam_env: Change the default to not read the user .pam_environment file (bsc#1243226).
  • pam_namespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path (bsc#1244509).

Список пакетов

SUSE Linux Enterprise Server 12 SP5-LTSS
pam-1.1.8-24.71.1
pam-32bit-1.1.8-24.71.1
pam-devel-1.1.8-24.71.1
pam-doc-1.1.8-24.71.1
pam-extra-1.1.8-24.71.1
pam-extra-32bit-1.1.8-24.71.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
pam-1.1.8-24.71.1
pam-32bit-1.1.8-24.71.1
pam-devel-1.1.8-24.71.1
pam-doc-1.1.8-24.71.1
pam-extra-1.1.8-24.71.1
pam-extra-32bit-1.1.8-24.71.1

Описание

unknown


Затронутые продукты
SUSE Linux Enterprise Server 12 SP5-LTSS:pam-1.1.8-24.71.1
SUSE Linux Enterprise Server 12 SP5-LTSS:pam-32bit-1.1.8-24.71.1
SUSE Linux Enterprise Server 12 SP5-LTSS:pam-devel-1.1.8-24.71.1
SUSE Linux Enterprise Server 12 SP5-LTSS:pam-doc-1.1.8-24.71.1

Ссылки
Уязвимость SUSE-SU-2025:02001-1