[ubuntu/noble-updates] pam-pkcs11 0.6.12-2ubuntu0.24.04.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Mar 20 17:58:40 UTC 2025
pam-pkcs11 (0.6.12-2ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: authentication bypass
- debian/patches/CVE-2025-24032*.patch: makes the use of signatures to
verify authentication the default behavior when using X.509
certificates.
- CVE-2025-24032
* SECURITY UPDATE: authentication bypass
- debian/patches/CVE-2025-24531.patch: changes previously implemented
default behavior of returning PAM_IGNORE in most cases where
authentication was not possible.
- CVE-2025-24531
Date: 2025-03-03 14:57:11.105550+00:00
Changed-By: Ian Constantin <ian.constantin at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/pam-pkcs11/0.6.12-2ubuntu0.24.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list