SUSE: 2011:1218-2 Critical: Pam Security Vulnerabilities Alert
suse
November 4, 2011
An update that fixes two vulnerabilities is now available
Summary
Warning: Undefined array key "advisoryid" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/34053_1edcd913e2b52798c5b9126b8927230e on line 19
SUSE Security Update: Security update for pam
______________________________________________________________________________
Announcement ID: SUSE-SU-2011:1218-1
Rating: important
References: #631802 #724480
Cross-References: CVE-2011-3148 CVE-2011-3149
Affected Products:
______________________________________________________________________________
An update that fixes two vulnerabilities is now available.
Description:
The pam_env module was vulnerable to a stack overflow
(CVE-2011-3148) and a DoS condition (CVE-2011-3149) when
parsing users .pam_environment files. Additionally a
missing return value check inside pam_xauth has been fixed
(CVE-2010-3316).
Security Issue references:
* CVE-2011-3148
Topics Covered
References
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Warning: Undefined array key "block1" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/34053_c1d2d4f425d79c8c327f2b8603847ec6 on line 11
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!