Hello community, here is the log from the commit of package pam-modules checked in at Mon Aug 11 23:25:45 CEST 2008. -------- --- pam-modules/pam-modules.changes 2008-05-23 16:12:06.000000000 +0200 +++ pam-modules/pam-modules.changes 2008-08-11 17:17:31.496018000 +0200 @@ -1,0 +2,7 @@ +Mon Aug 11 17:10:59 CEST 2008 - mc@suse.de + +- fix password change. Compare stored with entered password + if PAM_CHANGE_EXPIRED_AUTHTOK flag is set. + (bnc#414783) + +------------------------------------------------------------------- New: ---- pam_unix2-2.5.1-passwd.dif ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam-modules.spec ++++++ --- /var/tmp/diff_new_pack.Z21849/_old 2008-08-11 23:24:07.000000000 +0200 +++ /var/tmp/diff_new_pack.Z21849/_new 2008-08-11 23:24:07.000000000 +0200 @@ -1,10 +1,17 @@ # -# spec file for package pam-modules (Version 11.0) +# spec file for package pam-modules (Version 11.0.42) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. -# This file and all modifications and additions to the pristine -# package are under the same license as the package itself. # +# All modifications and additions to the file contributed by third parties +# remain the property of their copyright owners, unless otherwise agreed +# upon. The license for this file, and modifications and additions to the +# file, is the same license as for the pristine package itself (unless the +# license for the pristine package is not an Open Source License, in which +# case the license is the MIT License). An "Open Source License" is a +# license that conforms to the Open Source Definition (Version 1.9) +# published by the Open Source Initiative. + # Please submit bugfixes or comments via http://bugs.opensuse.org/ # @@ -21,8 +28,8 @@ License: BSD 3-Clause; GPL v2 or later Group: System/Libraries AutoReqProv: on -Version: 11.0 -Release: 33 +Version: 11.0.42 +Release: 13 Summary: Additional PAM Modules Source0: pam_unix2-2.5.1.tar.bz2 Source1: pam_pwcheck-3.11.1.tar.bz2 @@ -32,6 +39,7 @@ Source41: unix2_chkpwd.8 Source50: dlopen.sh Patch1: pam-modules-10.3-pam_make-fix-open.dif +Patch2: pam_unix2-2.5.1-passwd.dif BuildRoot: %{_tmppath}/%{name}-%{version}-build PreReq: permissions @@ -48,6 +56,7 @@ %prep %setup -q -c %{name} -b1 -b2 -b5 %patch1 +%patch2 -p1 %build for i in * ; do @@ -118,6 +127,10 @@ %attr(644,root,root) %doc %{_mandir}/man8/unix2_chkpwd.8.gz %changelog +* Mon Aug 11 2008 mc@suse.de +- fix password change. Compare stored with entered password + if PAM_CHANGE_EXPIRED_AUTHTOK flag is set. + (bnc#414783) * Fri May 23 2008 kukuk@suse.de - Update translations for pam_unix2 and pam_pwcheck * Fri Apr 11 2008 kukuk@suse.de ++++++ pam_unix2-2.5.1-passwd.dif ++++++ Index: pam-modules-11.0/pam_unix2-2.5.1/src/unix_passwd.c =================================================================== --- pam-modules-11.0.orig/pam_unix2-2.5.1/src/unix_passwd.c +++ pam-modules-11.0/pam_unix2-2.5.1/src/unix_passwd.c @@ -254,7 +254,7 @@ pam_sm_chauthtok (pam_handle_t *pamh, in if (flags & PAM_PRELIM_CHECK) { /* Check if the old password was correct. */ - if (getuid () && strcmp (data->oldpassword, + if ((getuid () || (flags & PAM_CHANGE_EXPIRED_AUTHTOK)) && strcmp (data->oldpassword, crypt_r (oldpass, data->oldpassword, &output)) != 0) { if (options.debug) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org