diff options
Diffstat (limited to 'debian')
| -rw-r--r-- | debian/changelog | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 0e5dcf3..6d74432 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,21 @@ +nss-pam-ldapd (0.8.1) experimental; urgency=low + + * SECURITY FIX: the PAM module will allow authentication for users that do + not exist in LDAP, this allows login to local users with an + incorrect password (CVE-2011-0438) + the explotability of the problem depends on the details of + the PAM stack and the use of the minimum_uid PAM option + * add FreeBSD support, partially imported from the FreeBSD port (thanks to + Jacques Vidrine, Artem Kazakov and Alexander V. Chernikov) + * document how to replace name pam_check_service_attr and + pam_check_host_attr options in PADL's pam_ldap with with pam_authz_search + in nss-pam-ldapd (closes: #610925) + * implement a fqdn variable that can be used in pam_authz_search filters + * create the directory to hold the socket and pidfile on startup + * implement host, network and netgroup support in pynslcd + + -- Arthur de Jong <adejong@debian.org> Thu, 10 Mar 2011 22:00:00 +0100 + nss-pam-ldapd (0.8.0) experimental; urgency=low * include Solaris support developed by Ted C. Cheng of Symas Corporation |