Package: libpam4j | Debian Sources

Package: libpam4j / 1.4-2+deb9u1

Metadata

Package	Version	Patches format
libpam4j	1.4-2+deb9u1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
01 versioned lib.patch \| (download)	src/main/java/org/jvnet/libpam/impl/PAMLibrary.java \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	fix version of libpam.so to 0; this ensures that the jni links against the right version of the pam library on Debian based distros.
CVE 2017 12197.patch \| (download)	src/main/java/org/jvnet/libpam/PAM.java \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	cve-2017-12197 Reenable the check for pam_acct_mgmt module. It was possible to authenticate with an invalid account. Bug-Debian: https://bugs.debian.org/879001 Bug-Upstream: https://github.com/kohsuke/libpam4j/issues/18

Patch

File delta

Description

01 versioned lib.patch | (download)

src/main/java/org/jvnet/libpam/impl/PAMLibrary.java | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix version of libpam.so to 0; this ensures that the jni
 links against the right version of the pam library on Debian based distros.

CVE 2017 12197.patch | (download)

src/main/java/org/jvnet/libpam/PAM.java | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 cve-2017-12197

Reenable the check for pam_acct_mgmt module. It was possible to authenticate
with an invalid account.

Bug-Debian: https://bugs.debian.org/879001
Bug-Upstream: https://github.com/kohsuke/libpam4j/issues/18