Hello community, here is the log from the commit of package pam checked in at Wed Aug 23 20:48:49 CEST 2006. -------- --- pam/pam.changes 2006-08-11 03:27:44.000000000 +0200 +++ pam/pam.changes 2006-08-23 19:12:07.000000000 +0200 @@ -1,0 +2,10 @@ +Wed Aug 23 19:11:41 CEST 2006 - kukuk@suse.de + +- Fix seg.fault in pam_cracklib if retyped password is empty + +------------------------------------------------------------------- +Tue Aug 22 21:53:40 CEST 2006 - kukuk@suse.de + +- Remove use_first_pass from pam_unix2.so in password section + +------------------------------------------------------------------- New: ---- pam_cracklib.diff ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam.spec ++++++ --- /var/tmp/diff_new_pack.nW2NY3/_old 2006-08-23 20:48:41.000000000 +0200 +++ /var/tmp/diff_new_pack.nW2NY3/_new 2006-08-23 20:48:41.000000000 +0200 @@ -20,7 +20,7 @@ Group: System/Libraries Autoreqprov: on Version: 0.99.6.1 -Release: 1 +Release: 3 Summary: A security tool that provides authentication for applications Obsoletes: pam-laus Source: Linux-PAM-%{version}.tar.bz2 @@ -32,6 +32,7 @@ Source6: common-password.pamd Source7: common-session.pamd Source8: etc.environment +Patch: pam_cracklib.diff BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -59,6 +60,7 @@ %prep %setup -q -n Linux-PAM-%{version} -b 1 +%patch %build CFLAGS="$RPM_OPT_FLAGS" \ @@ -180,6 +182,10 @@ %{_libdir}/libpam_misc.so %changelog -n pam +* Wed Aug 23 2006 - kukuk@suse.de +- Fix seg.fault in pam_cracklib if retyped password is empty +* Tue Aug 22 2006 - kukuk@suse.de +- Remove use_first_pass from pam_unix2.so in password section * Fri Aug 11 2006 - kukuk@suse.de - Update to Linux-PAM 0.99.6.1 (big documentation update) * Fri Jul 28 2006 - kukuk@suse.de ++++++ common-password.pamd ++++++ --- pam/common-password.pamd 2006-02-18 13:05:39.000000000 +0100 +++ pam/common-password.pamd 2006-08-22 21:53:11.000000000 +0200 @@ -18,6 +18,6 @@ # pam_make can be used to rebuild NIS maps after password change. # password required pam_pwcheck.so nullok -password required pam_unix2.so nullok use_first_pass use_authtok +password required pam_unix2.so nullok use_authtok #password required pam_make.so /var/yp ++++++ pam_cracklib.diff ++++++ --- modules/pam_cracklib/pam_cracklib.c 22 May 2006 17:27:54 -0000 1.17 +++ modules/pam_cracklib/pam_cracklib.c 23 Aug 2006 17:09:33 -0000 @@ -668,6 +668,12 @@ continue; } + if (retval != PAM_SUCCESS) { + if (ctrl && PAM_DEBUG_ARG) + pam_syslog(pamh,LOG_DEBUG,"unable to obtain retyped password"); + continue; + } + /* Hopefully now token1 and token2 the same password ... */ if (strcmp(token1,token2) != 0) { /* tell the user */ ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org