Nom du paquet
Advisory ID
Affected versions
7.2 i586

Problem description

The pam_localuser module, which is a part of the pam package, contains a buffer overflow vulnerability. This module is not used in any default configuration and for a user to be exploited, they would have to manually insert it into a configuration file in the /etc/pam.d directory. Update: The pam packages for 7.2 had a dependency problem with kdebase due to the version number. New packages are now available for 7.2 that correct this problem.

Updated packages

7.2 i586

 8a78141a4e4104493fa3e54a3d114454  7.2/RPMS/pam-0.72-13.1mdk.i586.rpm
6ad4ec3a6264a7b6616b87e75c3a29d3  7.2/RPMS/pam-devel-0.72-13.1mdk.i586.rpm
b6cee6af9f62a5c335158794a9286113  7.2/RPMS/pam-doc-0.72-13.1mdk.i586.rpm
3729083b850b06722a3eab2cc31d818c  7.2/SRPMS/pam-0.72-13.1mdk.src.rpm