Linux-PAM 0.99.7.1 released
Tomas Mraz
tmraz at redhat.com
Tue Jan 23 13:35:31 UTC 2007
Hello,
The Linux-PAM developement team is pleased to announce the release
of version 0.99.7.1.
This release fixes a serious problem in pam_unix.so introduced in the
previous release 0.99.7.0. With that release anyone would be able to
log in into account with '!!' or similar password hash in /etc/shadow
or /etc/passwd using any password. Anyone using pam_unix should immediately
upgrade. CVE-2007-0003 (cve.mitre.org) was assigned to this issue.
Release 0.99.7.1
* Security fix for pam_unix.so (CVE-2007-0003).
Your Linux-PAM development team
--
Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
Turkish proverb
More information about the Pam-list
mailing list