From 7bd6de3921993855d280a42e8e5e81f7e2360ba3 Mon Sep 17 00:00:00 2001
From: Arthur de Jong <arthur@arthurdejong.org>
Date: Thu, 10 Mar 2011 21:45:14 +0000
Subject: get files ready for 0.8.1 release

git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1385 ef36b2f9-881f-0410-afb5-c4e39611909c
---
 NEWS | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index eb79260..71ad535 100644
--- a/NEWS
+++ b/NEWS
@@ -1,3 +1,21 @@
+changes from 0.8.0 to 0.8.1
+---------------------------
+
+* SECURITY FIX: the PAM module will allow authentication for users that do not
+                exist in LDAP, this allows login to local users with an
+                incorrect password (CVE-2011-0438)
+                the explotability of the problem depends on the details of the
+                PAM stack and the use of the minimum_uid PAM option
+* include a file that was missing for Solaris support
+* add FreeBSD support, partially imported from the FreeBSD port (thanks to
+  Jacques Vidrine, Artem Kazakov and Alexander V. Chernikov)
+* document how to replace name pam_check_service_attr and pam_check_host_attr
+  options in PADL's pam_ldap with with pam_authz_search in nss-pam-ldapd
+* implement a fqdn variable that can be used in pam_authz_search filters
+* create the directory to hold the socket and pidfile on startup
+* implement host, network and netgroup support in pynslcd
+
+
 changes from 0.7.13 to 0.8.0
 ----------------------------
 
-- 
cgit v1.2.3