linux-pam

mirror of https://github.com/linux-pam/linux-pam.git synced 2024-11-27 11:43:38 +08:00

Author	SHA1	Message	Date
Thorsten Kukuk	e89d4c9738	Release version 1.2.1 Security fix: CVE-2015-3238 If the process executing pam_sm_authenticate or pam_sm_chauthtok method of pam_unix is not privileged enough to check the password, e.g. if selinux is enabled, the _unix_run_helper_binary function is called. When a long enough password is supplied (16 pages or more, i.e. 65536+ bytes on a system with 4K pages), this helper function hangs indefinitely, blocked in the write(2) call while writing to a blocking pipe that has a limited capacity. With this fix, the verifiable password length will be limited to PAM_MAX_RESP_SIZE bytes (i.e. 512 bytes) for pam_exec and pam_unix. * NEWS: Update * configure.ac: Bump version * modules/pam_exec/pam_exec.8.xml: document limitation of password length * modules/pam_exec/pam_exec.c: limit password length to PAM_MAX_RESP_SIZE * modules/pam_unix/pam_unix.8.xml: document limitation of password length * modules/pam_unix/pam_unix_passwd.c: limit password length * modules/pam_unix/passverify.c: Likewise * modules/pam_unix/passverify.h: Likewise * modules/pam_unix/support.c: Likewise	2015-06-22 14:53:01 +02:00
Thorsten Kukuk	8b4fa62e67	Release version 1.2.0 * NEWS: Update * configure.ac: Bump version * libpam/Makefile.am: Bump version of libpam * libpam_misc/Makefile.am: Bump version of libpam_misc * po/*: Regenerate po files	2015-04-27 16:50:32 +02:00
Thorsten Kukuk	9af03209b9	Release version 1.1.8	2013-09-19 11:30:37 +02:00
Thorsten Kukuk	c4d8ba02bd	Release version 1.1.7	2013-09-11 16:49:07 +02:00
Tomas Mraz	fd0e879708	Updated translations from Transifex. * po/*.po: Updated translations from Transifex.	2013-08-22 13:41:30 +02:00
Tomas Mraz	1180d0bfa1	Updated translations from Transifex, added new languages. po/LINGUAS: Added new languages. po/*.po: Updated translations from Transifex including new languages.	2012-12-12 18:38:48 +01:00
Thorsten Kukuk	d4931cce40	release version 1.1.6 configure.in: Bump version to 1.1.6 NEWS: Document changes po/.po: Regenerate .po files	2012-08-17 11:48:15 +02:00
Tomas Mraz	cbf713d0a6	Pulled new translations from Transifex. po/*.po: Updated translations.	2012-05-28 20:57:36 +02:00
Thorsten Kukuk	51485ba5d2	2011-06-22 Thorsten Kukuk <kukuk@thkukuk.de> * release version 1.1.4 * configure.in: Bump version number. * NEWS: Document changes since 1.1.3 * libpam/Makefile.am: Bump release number of shared library * po/de.po: Translate new string.	2011-06-21 14:02:33 +02:00
Thorsten Kukuk	4a662fcabd	Relevant BUGIDs: Purpose of commit: bugfix Commit summary: --------------- 2010-10-27 Thorsten Kukuk <kukuk@thkukuk.de> * doc/adg/Makefile.am: Use UTF-8 for html docu. * doc/mwg/Makefile.am: Likewise. * doc/sag/Makefile.am: Likewise. kernel.org webserver is using UTF-8	2010-10-27 13:18:50 +00:00
Thorsten Kukuk	08e55be772	Relevant BUGIDs: Purpose of commit: new release Commit summary: --------------- 2010-08-31 Thorsten Kukuk <kukuk@thkukuk.de> * release version 1.1.2 * configure.in: Bump version number. * NEWS: Document changes since 1.1.1. * doc/adg/Linux-PAM_ADG.xml: Bump version number. * doc/mwg/Linux-PAM_MWG.xml: Likewise. * doc/sag/Linux-PAM_SAG.xml: Likewise. * libpam/Makefile.am: Bump revision of shared library. * po/*.po: Regenerate.	2010-08-31 11:20:59 +00:00
Thorsten Kukuk	6a8a525828	Relevant BUGIDs: 3010705 Purpose of commit: bugfix Commit summary: --------------- 2010-06-15 Thorsten Kukuk <kukuk@thkukuk.de> * modules/pam_xauth/pam_xauth.c (pam_sm_close_session): Call setfsuid to be allowed to remove temporary files (#3010705). (pam_sm_open_session): Call fchown with correct permissions.	2010-06-15 14:27:13 +00:00
Thorsten Kukuk	f65cb94d25	Relevant BUGIDs: Purpose of commit: new feature Commit summary: --------------- 2010-04-06 Thorsten Kukuk <kukuk@thkukuk.de> * modules/pam_rootok/pam_rootok.c: Add support for acct_mgmt and chauthtok. * modules/pam_rootok/pam_rootok.8.xml: Document new module types.	2010-04-06 08:07:11 +00:00
Thorsten Kukuk	2c201a306e	Relevant BUGIDs: Purpose of commit: release Commit summary: --------------- 2009-12-16 Thorsten Kukuk <kukuk@suse.de> * release version 1.1.1 * NEWS: Adjust for 1.1.1 * configure.in: Likewise. * doc/adg/Linux-PAM_ADG.xml: Likewise. * doc/mwg/Linux-PAM_MWG.xml: Likewise. * doc/sag/Linux-PAM_SAG.xml: Likewise. * po/*.po: Regenerated.	2009-12-16 13:17:13 +00:00
Thorsten Kukuk	0674700d17	Relevant BUGIDs: Purpose of commit: regression fix Commit summary: --------------- 2009-11-10 Thorsten Kukuk <kukuk@suse.de> * doc/man/pam_get_authtok.3.xml: Document pam_get_authtok_noverify and pam_get_authtok_verify. * libpam/Makefile.am (libpam_la_LDFLAGS): Bump revesion of libpam. * libpam/pam_get_authtok.c (pam_get_authtok_internal): Renamed from pam_get_authtok, add flags argument, always check return values. * modules/pam_cracklib/pam_cracklib.c (pam_sm_chauthtok): Use pam_get_authtok_noverify and pam_get_authtok_verify. * libpam/include/security/pam_ext.h: Add prototypes for pam_get_authtok_noverify and pam_get_authtok_verify. * libpam/libpam.map: Add new pam_get_authtok_* functions.	2009-11-10 15:52:20 +00:00
Thorsten Kukuk	15ea8d1c2d	Relevant BUGIDs: Purpose of commit: bugfix Commit summary: --------------- 2009-07-21 Thorsten Kukuk <kukuk@thkukuk.de> * modules/pam_cracklib/pam_cracklib.c (pam_sm_chauthtok): Delete new token if it does not match strength criteria.	2009-07-21 13:59:24 +00:00
Thorsten Kukuk	56c8282d12	Relevant BUGIDs: Purpose of commit: release Commit summary: --------------- 2009-06-19 Thorsten Kukuk <kukuk@thkukuk.de> * release version 1.1.0	2009-06-19 14:45:29 +00:00
Thorsten Kukuk	e6f5e6cb35	Relevant BUGIDs: Purpose of commit: beta release Commit summary: --------------- 2009-05-05 Thorsten Kukuk <kukuk@thkukuk.de> * release 1.0.92 * libpamc/Makefile.am (libpamc_la_LDFLAGS): Increase revesion. * configure.in: Increase version to 1.0.92.	2009-05-05 16:01:49 +00:00
Tomas Mraz	ecf3ee5d3a	Relevant BUGIDs: Purpose of commit: translations Commit summary: --------------- 2009-04-03 Shankar Prasad <svenkate@redhat.com> * po/kn.po: Updated translations. 2009-04-03 Manoj Kumar Giri <mgiri@redhat.com> * po/or.po: Updated translations. 2009-04-03 Miloš Komarčević <kmilos@gmail.com> * po/sr.po: Updated translations. * po/sr@latin.po: Updated translations. 2009-04-03 Leah Liu <lliu@redhat.com> * po/zh_CN.po: Updated translations.	2009-04-03 14:43:59 +00:00
Thorsten Kukuk	fd1b9361a9	Relevant BUGIDs: 2487654 Purpose of commit: bugfix Commit summary: --------------- 2009-03-25 Thorsten Kukuk <kukuk@thkukuk.de> * modules/pam_mkhomedir/pam_mkhomedir.c: Make option handling reentrant (#2487654) (_pam_parse): Fix umask option. * modules/pam_unix/passverify.c: Fix typo. * modules/pam_issue/pam_issue.c: Fix compiler warning. * modules/pam_ftp/pam_ftp.c: Likewise.	2009-03-25 10:54:23 +00:00
Thorsten Kukuk	72855d2407	Relevant BUGIDs: Purpose of commit: release Commit summary: --------------- 2009-03-09 Thorsten Kukuk <kukuk@thkukuk.de> * release version 1.0.91 * libpam/Makefile.am (libpam_la_LDFLAGS): Bump version number. * xtests/Makefile.am: Add tst-pam_unix4.pamd, tst-pam_unix4.sh and time.conf.	2009-03-09 13:07:34 +00:00
Thorsten Kukuk	48a26b6141	Relevant BUGIDs: Purpose of commit: bugfix Commit summary: --------------- 2009-02-25 Thorsten Kukuk <kukuk@thkukuk.de> * libpam/pam_misc.c (_pam_StrTok): Use unsigned char instead of int. Reported by Marcus Granado. * tests/Makefile.am (TESTS): Add tst-pam_mkargv. * tests/tst-pam_mkargv.c (main): Test case for _pam_mkargv. * po/de.po: Update fuzzy translations.	2009-02-25 17:05:22 +00:00
Thorsten Kukuk	a1131337d7	Relevant BUGIDs: Purpose of commit: new feature Commit summary: --------------- 2008-12-10 Thorsten Kukuk <kukuk@thkukuk.de> * doc/man/pam_item_types_ext.inc.xml: Document PAM_AUTHTOK_TYPE. * libpam/pam_end.c (pam_end): Free authtok_type. * tests/tst-pam_get_item.c: Add PAM_AUTHTOK_TYPE as test case. * tests/tst-pam_set_item.c: Likewise. * libpam/pam_start.c (pam_start): Initialize xdisplay, xauth and authtok_type. * libpam/pam_get_authtok.c (pam_get_authtok): Rename "type" to "authtok_type". * modules/pam_cracklib/pam_cracklib.8.xml: Replace "type=" with "authtok_type=". * doc/man/pam_get_authtok.3.xml: Document authtok_type argument. * modules/pam_cracklib/pam_cracklib.c (pam_sm_chauthtok): Set type= argument as PAM_AUTHTOK_TYPE item. * libpam/pam_get_authtok.c (pam_get_authtok): If no type argument given, use PAM_AUTHTOK_TYPE item. * libpam/pam_item.c (pam_get_item): Fetch PAM_AUTHTOK_TYPE item. (pam_set_item): Store PAM_AUTHTOK_TYPE item. * libpam/pam_private.h: Add authtok_type to pam_handle. * libpam/include/security/_pam_types.h (PAM_AUTHTOK_TYPE): New.	2008-12-11 19:41:49 +00:00
Thorsten Kukuk	f326d04ccd	Relevant BUGIDs: Purpose of commit: new feature Commit summary: --------------- 2008-12-03 Thorsten Kukuk <kukuk@suse.de> * doc/man/Makefile.am: Add pam_get_authtok.3.xml. * doc/man/pam_get_authtok.3.xml: New. * libpam/Makefile.am: Add pam_get_authtok.c. * libpam/libpam.map: Export pam_get_authtok. * libpam/pam_get_authtok.c: New. * libpam/pam_private.h: Add mod_argc and mod_argv to pam_handle. * libpam_include/security/pam_ext.h: Add pam_get_authtok prototype. * modules/pam_cracklib/pam_cracklib.c: Use pam_get_authtok. * modules/pam_pwhistory/pam_pwhistory.c: Likewise. * po/POTFILES.in: Add libpam/pam_get_authtok.c. * xtests/tst-pam_cracklib1.c: Adjust error codes. * modules/pam_timestamp/Makefile.am: Remove hmactest.c from EXTRA_DIST. * po/*.po: Regenerated.	2008-12-03 14:16:33 +00:00
Tomas Mraz	4a67d64dd0	Relevant BUGIDs: Purpose of commit: new feature Commit summary: --------------- 2008-11-28 Tomas Mraz <t8m@centrum.cz> * modules/pam_tally2/pam_tally2.c (tally_check): Fix info format to be the same as in pam_tally. * configure.in: Add modules/pam_timestamp/Makefile. * doc/sag/Linux-PAM_SAG.xml: Include pam_timestamp.xml. * doc/sag/pam_timestamp.xml: New. * libpam/pam_static_modules.h: Add pam_timestamp static struct. * modules/Makefile.am: Add pam_timestamp directory. * modules/pam_timestamp/Makefile.am: New. * modules/pam_timestamp/README.xml: New. * modules/pam_timestamp/hmacsha1.h: New. * modules/pam_timestamp/sha1.h: New. * modules/pam_timestamp/pam_timestamp.8.xml: New. * modules/pam_timestamp/pam_timestamp_check.8.xml: New. * modules/pam_timestamp/pam_timestamp.c: New. * modules/pam_timestamp/pam_timestamp_check.c: New. * modules/pam_timestamp/hmacfile.c: New. * modules/pam_timestamp/hmacsha1.c: New. * modules/pam_timestamp/sha1.c: New. * modules/pam_timestamp/tst-pam_timestamp: New. * po/POTFILES.in: Add pam_timestamp sources. * po/.po: Regenerate. po/cs.po: Updated translations.	2008-11-28 14:29:12 +00:00
Thorsten Kukuk	0a5ee586be	Relevant BUGIDs: Purpose of commit: Commit summary: --------------- 2008-10-27 Thorsten Kukuk <kukuk@thkukuk.de> * doc/man/pam_setcred.3.xml: Document when credentials should be deleted. * po/ja.po: Fix syntax error. * po/de.po: Update translations. * po/*.po: Regenerate with pam_tally2 added.	2008-10-27 06:46:50 +00:00
Tomas Mraz	a0428860a7	Relevant BUGIDs: Purpose of commit: translations Commit summary: --------------- 2008-10-23 Taylon Silmer Lacerda Silva <taylonsilva@gmail.com> * po/pt_BR.po: Updated translations. 2008-10-23 Krishna Babu K <kkrothap@redhat.com> * po/LINGUAS: New language. * po/te.po: New translation to Telugu. 2008-10-23 Manoj Kumar Giri <mgiri@redhat.com> * po/or.po: Updated translations.	2008-10-23 13:06:04 +00:00
Tomas Mraz	4431a30719	Relevant BUGIDs: Purpose of commit: translations Commit summary: --------------- 2008-10-13 Tomas Mraz <t8m@centrum.cz> * po/LINGUAS: New languages. * po/cs.po: Updated translations. 2008-10-13 Amitakhya Phukan <aphukan@redhat.com> * po/as.po: Updated translations. 2008-10-13 Shankar Prasad <svenkate@redhat.com> * po/kn.po: Updated translations. 2008-10-13 Sandeep Sheshrao Shedmake <sshedmak@redhat.com> * po/mr.po: New translation to Marathi. 2008-10-13 Runa Bhattacharjee <runab@redhat.com> * po/bn_IN.po: Updated translations. 2008-10-13 Sharuzzaman Ahmat Raslan <sharuzzaman@gmail.com> * po/ms.po: New translation to Malay.	2008-10-13 20:00:29 +00:00
Thorsten Kukuk	dad5bd7c14	Relevant BUGIDs: Purpose of commit: new feature Commit summary: --------------- 2008-10-10 Thorsten Kukuk <kukuk@thkukuk.de> * configure.in: add modules/pam_pwhistory/Makefile. * doc/sag/Linux-PAM_SAG.xml: Include pam_pwhistory.xml. * doc/sag/pam_pwhistory.xml: New. * libpam/pam_static_modules.h: Add pam_pwhistory data. * modules/Makefile.am: Add pam_pwhistory directory. * modules/pam_pwhistory/Makefile.am: New. * modules/pam_pwhistory/README.xml: New. * modules/pam_pwhistory/opasswd.c: New. * modules/pam_pwhistory/opasswd.h: New. * modules/pam_pwhistory/pam_pwhistory.8.xml: New. * modules/pam_pwhistory/pam_pwhistory.c: New. * modules/pam_pwhistory/tst-pam_pwhistory: New. * xtests/Makefile.am: New. * xtests/run-xtests.sh: New. * xtests/tst-pam_pwhistory1.c: New. * xtests/tst-pam_pwhistory1.pamd: New. * xtests/tst-pam_pwhistory1.sh: New. * po/POTFILES.in: Add modules/pam_pwhistory/. * po/de.po: Update translations.	2008-10-10 06:53:45 +00:00
Tomas Mraz	0a838b2491	Relevant BUGIDs: Purpose of commit: translations Commit summary: --------------- 2008-09-30 Manoj Kumar Giri <mgiri@redhat.com> * po/or.po: Updated translations. 2008-09-30 Sharuzzaman Ahmat Raslan <sharuzzaman@gmail.com> * po/ms.po: New translation to Malay. 2008-09-30 Taylon Silmer Lacerda Silva <taylonsilva@gmail.com> * po/pt_BR.po: Updated translations. 2008-09-30 Tomas Mraz <t8m@centrum.cz> * po/Linux-pam.pot: Updated strings to translate. * po/*.po: Likewise.	2008-09-30 14:54:30 +00:00
Thorsten Kukuk	aeccee4585	Relevant BUGIDs: Purpose of commit: bugfix Commit summary: --------------- 2008-04-21 Thorsten Kukuk <kukuk@thkukuk.de> * modules/pam_access/access.conf.5.xml: Document changed behavior of LOCAL keyword. * modules/pam_access/pam_access.c: Add from_remote_host to struct login_info to change behavior of LOCAL keyword: if PAM_RHOST is not set, LOCAL will be true.	2008-04-21 11:21:12 +00:00
Thorsten Kukuk	dfb7fbbb72	Relevant BUGIDs: Purpose of commit: release Commit summary: --------------- Release Version 1.0.0 2008-04-03 Thorsten Kukuk <kukuk@thkukuk.de> * release version 1.0.0 * configure.in: Set version number to 1.0.0. * libpam/Makefile.am: Bump patchlevel of libpam. * doc/adg/Linux-PAM_ADG.xml: Update version/date. * doc/mwg/Linux-PAM_MWG.xml: Likewise. * doc/sag/Linux-PAM_SAG.xml: Likewise.	2008-04-04 10:22:59 +00:00
Tomas Mraz	82d45174fc	Relevant BUGIDs: Purpose of commit: translations Commit summary: --------------- 2008-03-03 Tomas Mraz <t8m@centrum.cz> * modules/pam_selinux/pam_selinux.c: Do not translate syslog messages. * po/Linux-PAM.pot: Update.	2008-03-03 08:09:10 +00:00
Tomas Mraz	d5ceba249d	Relevant BUGIDs: Purpose of commit: translations Commit summary: --------------- 2008-02-26 Tomas Mraz <t8m@centrum.cz> * po/LINUGAS: New languages added. * po/es.po: Updated translations. * po/fr.po: Likewise. * po/it.po: Likewise. * po/ja.po: Likewise. * po/nl.po: Likewise. * po/pl.po: Likewise. * po/pt_BR.po: Likewise. * po/ru.po: Likewise. * po/zh_CN.po: Likewise. * po/as.po: New file. * po/gu.po: Likewise. * po/hi.po: Likewise. * po/kn.po: Likewise. * po/ko.po: Likewise. * po/ml.po: Likewise. * po/or.po: Likewise. * po/si.po: Likewise. * po/ta.po: Likewise.	2008-02-26 13:23:22 +00:00

34 Commits