SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for pam_pkcs11-0.6.12-lp155.51.1.x86_64.rpm :

* Tue May 07 2024 Davide Benini - Fix for bsc#1221255:
* Add patch 0001-Set-slot_num-configuration-parameter-to-0-by-default.patch
* Thu Feb 29 2024 Dominique Leuenberger - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN.
* Mon Jan 16 2023 Stefan Schubert - Migration of PAM settings to /usr/lib/pam.d.
* Fri Jul 29 2022 pgajdosAATTsuse.com- use pam rpm macros [bsc#1190957]
* Sat Jan 15 2022 Andreas Stieger - update to 0.6.12:
* Limit signature length to 65536 bytes
* A number of bug fixes and OpenSSL compatibility updates
* console output color updates
* Add support of ECDSA signature in addition to RSA
* Thu Oct 14 2021 Johannes Segitz - Added hardening to systemd service(s) (bsc#1181400). Modified:
* pkcs11_eventmgr.service
* Tue Jan 29 2019 sbrabecAATTsuse.com- Update to version 0.6.10:
* Fix some security issues (thx AATTfrankmorgner): https://www.x41-dsec.de/lab/advisories/x41-2018-003-pam_pkcs11/ (drop 0001-verify-using-a-nonce-from-the-system-not-the-card.patch, 0002-fixed-buffer-overflow-with-long-home-directory.patch, 0003-fixed-wiping-secrets-with-OpenSSL_cleanse.patch).
* Fix buffer overflow with long home directory.
* Fix wiping secrets (now using OpenSSL_cleanse()).
* Verify using a nonce from the system, not the card.
* Fix segfalt when checking CRLs (drop pam_pkcs11-crl-check.patch).- Add rcpkcs11_eventmgr service symlink.
* Fri Aug 17 2018 vcizekAATTsuse.com- Address security issues found by X41 D-Sec audit (bsc#1105012)
* Authentication Replay
* Buffer Overflow
* Memory not cleaned properly before free()- add patches:
* 0001-verify-using-a-nonce-from-the-system-not-the-card.patch
* 0002-fixed-buffer-overflow-with-long-home-directory.patch
* 0003-fixed-wiping-secrets-with-OpenSSL_cleanse.patch
* Mon Jul 23 2018 sbrabecAATTsuse.com- Fix segfault and fetch problems when checking CRLs (pam_pkcs11-crl-check.patch).
* Sun Sep 10 2017 jengelhAATTinai.de- Repair bulletpoint that skidded in description. Trim description of %name-devel-doc, it does not cotain the programs.
* Wed Aug 09 2017 astiegerAATTsuse.com- add service file bsc#1049219
* Thu Jul 20 2017 sbrabecAATTsuse.com- Updated to version 0.6.9:
* Upstream web moved.
* pkcs11_listcerts: Do not fail on certificate error.
* Do not fail if card was already unlocked.
* Other bug fixes.
* Translation updates.- Drop upstreamed pam_pkcs11-0.6.8-fix-crypto-cflags.patch.- Work around incorrect upstream release process not calling \"make dist\".- Split API documentation into a separate package pam_pkcs11-devel-doc.- Add pam_pkcs11-fsf-address.patch.
* Tue Feb 09 2016 antoine.belvireAATTlaposte.net- Fix build for Tumbleweed:
* Add pam_pkcs11-0.6.8-fix-crypto-cflags.patch
* Rebuild configure with the bootstrap script (add libtool as build dependency)
  
ICM