[Bug 1219358] New: AUDIT-0: pam: new module: pam_canonicalize_user to canonicalize user name
https://bugzilla.suse.com/show_bug.cgi?id=1219358 Bug ID: 1219358 Summary: AUDIT-0: pam: new module: pam_canonicalize_user to canonicalize user name Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: kukuk@suse.com QA Contact: qa-bugs@suse.de Target Milestone: --- Found By: --- Blocker: --- Linux-PAM comes with a new trivial PAM module (~15 lines of code), which needs to be whitelisted. PR for the module: https://github.com/linux-pam/linux-pam/pull/617 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219358 Thorsten Kukuk <kukuk@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |valentin.lefebvre@suse.com -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219358 https://bugzilla.suse.com/show_bug.cgi?id=1219358#c1 Matthias Gerstner <matthias.gerstner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|AUDIT-0: pam: new module: |AUDIT-WHITELIST: pam: new |pam_canonicalize_user to |module: |canonicalize user name |pam_canonicalize_user to | |canonicalize user name --- Comment #1 from Matthias Gerstner <matthias.gerstner@suse.com> --- The new module is already found in the pam devel project on OBS. It just checks whether the provided username, when resolved via getpwnam & friends, differs. If so then the username stored in the PAM handle is adjusted to the one provided by the system functions. Whitelisting can be done. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219358 Matthias Gerstner <matthias.gerstner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|security-team@suse.de |matthias.gerstner@suse.com Status|NEW |IN_PROGRESS -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1219358 https://bugzilla.suse.com/show_bug.cgi?id=1219358#c3 Matthias Gerstner <matthias.gerstner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|IN_PROGRESS |RESOLVED --- Comment #3 from Matthias Gerstner <matthias.gerstner@suse.com> --- The whitelisting has reached Factory. Closing. -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com