[ol8_baseos_latest] pam-1.3.1-37.0.2.el8_10.x86_64

PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policy without
having to recompile programs that handle authentication.

Changelog (Show File list) (Show related packages)

• Thu Jul 31 2025 Ronan Pigott <ronan.pigott@oracle.com> - 1.3.1-37.0.2

  - pam_namespace: actually fix CVE-2025-6020 [Orabug: 38249031]

• Tue Jul 01 2025 EL Errata <el-errata_ww@oracle.com> - 1.3.1-37.0.1

  - pam_limits: fix use after free in pam_sm_open_session [Orabug: 36272695]

• Mon Jun 16 2025 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-37

  - pam_namespace: fix potential privilege escalation.
    Resolves: CVE-2025-6020 and RHEL-96724

• Mon Nov 25 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-36

  - pam_access: rework resolving of tokens as hostname.
    Resolves: CVE-2024-10963 and RHEL-66242

• Mon Nov 04 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-35

  - pam_unix: always run the helper to obtain shadow password file entries.
    CVE-2024-10041. Resolves: RHEL-62877
  - pam_access: always match local address and clarify LOCAL keyword behaviour.
    Resolves: RHEL-23018
  - libpam: support long lines in service files. Resolves: RHEL-5051

• Thu Apr 04 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-34

  - fix formatting of audit messages. Resolves: RHEL-28620

• Mon Feb 12 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-33

  - pam_namespace: protect_dir(): use O_DIRECTORY to prevent local DoS
    situations. CVE-2024-22365. Resolves: RHEL-21242

• Fri Jan 26 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-32

  - pam_access: handle hostnames in access.conf. Resolves: RHEL-3374

• Mon Jan 08 2024 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-31

  - pam_faillock: create tallydir before creating tallyfile. Resolves: RHEL-19810

• Thu Nov 02 2023 Iker Pedrosa <ipedrosa@redhat.com> - 1.3.1-30

  - pam_unix: enable bcrypt. Resolves: RHEL-5057