Hello community, here is the log from the commit of package pam-modules checked in at Fri Sep 29 17:17:22 CEST 2006. -------- --- pam-modules/pam-modules.changes 2006-09-15 13:47:49.000000000 +0200 +++ /mounts/work_src_done/STABLE/pam-modules/pam-modules.changes 2006-09-29 14:07:16.000000000 +0200 @@ -1,0 +2,5 @@ +Fri Sep 29 14:06:48 CEST 2006 - kukuk@suse.de + +- Fix seg.fault in pam_unix2 [#208277] + +------------------------------------------------------------------- Old: ---- pam_unix2-2.0.tar.bz2 New: ---- pam_unix2-2.0.1.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ pam-modules.spec ++++++ --- /var/tmp/diff_new_pack.0F0hcH/_old 2006-09-29 17:15:48.000000000 +0200 +++ /var/tmp/diff_new_pack.0F0hcH/_new 2006-09-29 17:15:48.000000000 +0200 @@ -16,9 +16,9 @@ Group: System/Libraries Autoreqprov: on Version: 10.2 -Release: 8 +Release: 11 Summary: Additional PAM Modules -Source0: pam_unix2-2.0.tar.bz2 +Source0: pam_unix2-2.0.1.tar.bz2 Source1: pam_pwcheck-3.10.tar.bz2 Source2: pam_homecheck-2.0.tar.bz2 Source5: pam_make-1.1.tar.bz2 @@ -103,6 +103,8 @@ %attr(644,root,root) %doc %{_mandir}/man8/unix2_chkpwd.8.gz %changelog -n pam-modules +* Fri Sep 29 2006 - kukuk@suse.de +- Fix seg.fault in pam_unix2 [#208277] * Fri Sep 15 2006 - kukuk@suse.de - Update to pam_pwcheck 3.10 (Remove pam_pwcheck.conf support) - Update to pam_unix2 2.0 (Remove pam_unix2.conf support) ++++++ pam_unix2-2.0.tar.bz2 -> pam_unix2-2.0.1.tar.bz2 ++++++ diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/pam_unix2-2.0/ChangeLog new/pam_unix2-2.0.1/ChangeLog --- old/pam_unix2-2.0/ChangeLog 2006-09-15 12:29:14.000000000 +0200 +++ new/pam_unix2-2.0.1/ChangeLog 2006-09-29 09:17:50.000000000 +0200 @@ -1,3 +1,10 @@ +2006-09-27 Thorsten Kukuk <kukuk@thkukuk.de> + + * release version 2.0.1 + + * src/support.c (__get_tokens): Check for NULL as + strdup argument. + 2006-09-15 Thorsten Kukuk <kukuk@suse.de> * release version 2.0 @@ -10,6 +17,10 @@ * Update to gettext 0.15 +2006-08-26 Thorsten Kukuk <kukuk@thkukuk.de> + + * src/unix_acct.c (pam_sm_acct_mgmt): Remove old NIS+ code. + 2006-08-22 Thorsten Kukuk <kukuk@thkukuk.de> * release version 1.99.0 diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/pam_unix2-2.0/NEWS new/pam_unix2-2.0.1/NEWS --- old/pam_unix2-2.0/NEWS 2006-09-15 12:18:18.000000000 +0200 +++ new/pam_unix2-2.0.1/NEWS 2006-09-29 09:18:22.000000000 +0200 @@ -2,10 +2,12 @@ Copyright (C) 2005,2006 SUSE LINUX Products GmbH Copyright (C) 2001-2004 SuSE Linux AG Nuernberg, Germany -Copyright (C) 2005 SUSE LINUX Products GmbH, Germany Please send bug reports, questions and suggestions to <kukuk@suse.de>. +Version 2.0.1 +* Fix seg.fault for empty new passwords. + Version 2.0 * Remove pam_unix2.conf support. * Update translations. diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/pam_unix2-2.0/configure new/pam_unix2-2.0.1/configure --- old/pam_unix2-2.0/configure 2006-09-15 12:26:29.000000000 +0200 +++ new/pam_unix2-2.0.1/configure 2006-09-29 14:02:43.000000000 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.60 for pam_unix2 2.0. +# Generated by GNU Autoconf 2.60 for pam_unix2 2.0.1. # # Report bugs to <http://www.suse.de/feedback>. # @@ -559,8 +559,8 @@ # Identity of this package. PACKAGE_NAME='pam_unix2' PACKAGE_TARNAME='pam_unix2' -PACKAGE_VERSION='2.0' -PACKAGE_STRING='pam_unix2 2.0' +PACKAGE_VERSION='2.0.1' +PACKAGE_STRING='pam_unix2 2.0.1' PACKAGE_BUGREPORT='http://www.suse.de/feedback' ac_unique_file="src/support.c" @@ -1215,7 +1215,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures pam_unix2 2.0 to adapt to many kinds of systems. +\`configure' configures pam_unix2 2.0.1 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1285,7 +1285,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of pam_unix2 2.0:";; + short | recursive ) echo "Configuration of pam_unix2 2.0.1:";; esac cat <<\_ACEOF @@ -1380,7 +1380,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -pam_unix2 configure 2.0 +pam_unix2 configure 2.0.1 generated by GNU Autoconf 2.60 Copyright (C) 1992, 1993, 1994, 1995, 1996, 1998, 1999, 2000, 2001, @@ -1394,7 +1394,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by pam_unix2 $as_me 2.0, which was +It was created by pam_unix2 $as_me 2.0.1, which was generated by GNU Autoconf 2.60. Invocation command line was $ $0 $@ @@ -2064,7 +2064,7 @@ # Define the identity of the package. PACKAGE='pam_unix2' - VERSION='2.0' + VERSION='2.0.1' cat >>confdefs.h <<_ACEOF @@ -8719,7 +8719,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by pam_unix2 $as_me 2.0, which was +This file was extended by pam_unix2 $as_me 2.0.1, which was generated by GNU Autoconf 2.60. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -8772,7 +8772,7 @@ _ACEOF cat >>$CONFIG_STATUS <<_ACEOF ac_cs_version="\\ -pam_unix2 config.status 2.0 +pam_unix2 config.status 2.0.1 configured by $0, generated by GNU Autoconf 2.60, with options \\"`echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`\\" diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/pam_unix2-2.0/configure.in new/pam_unix2-2.0.1/configure.in --- old/pam_unix2-2.0/configure.in 2006-09-15 12:26:23.000000000 +0200 +++ new/pam_unix2-2.0.1/configure.in 2006-09-29 14:02:26.000000000 +0200 @@ -1,5 +1,5 @@ dnl Process this file with autoconf to produce a configure script. -AC_INIT(pam_unix2, 2.0, http://www.suse.de/feedback, pam_unix2) +AC_INIT(pam_unix2, 2.0.1, http://www.suse.de/feedback, pam_unix2) AM_INIT_AUTOMAKE AC_CONFIG_SRCDIR([src/support.c]) AM_CONFIG_HEADER(config.h) diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/pam_unix2-2.0/src/support.c new/pam_unix2-2.0.1/src/support.c --- old/pam_unix2-2.0/src/support.c 2006-08-23 12:13:38.000000000 +0200 +++ new/pam_unix2-2.0.1/src/support.c 2006-09-29 09:17:14.000000000 +0200 @@ -224,7 +224,7 @@ retval = PAM_INCOMPLETE; return retval; } - *password = strdup (cresp); + *password = strdup (cresp ? cresp : ""); _pam_drop (cresp); } diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn --exclude=.svnignore old/pam_unix2-2.0/src/unix_acct.c new/pam_unix2-2.0.1/src/unix_acct.c --- old/pam_unix2-2.0/src/unix_acct.c 2006-01-17 13:39:06.000000000 +0100 +++ new/pam_unix2-2.0.1/src/unix_acct.c 2006-09-29 09:17:15.000000000 +0200 @@ -262,31 +262,6 @@ if (sp == NULL) /* We have no shadow */ return PAM_SUCCESS; - if (sp->sp_pwdp && strcmp (sp->sp_pwdp, "*NP*") == 0) - { - uid_t save_uid = geteuid (); - - if (seteuid (pw->pw_uid) < 0) - { - pam_syslog (pamh, LOG_ERR, "account: seteuid(%d) faild", pw->pw_uid); - return PAM_PERM_DENIED; - } - - while (getspnam_r (pw->pw_name, &sp_resultbuf, sp_buffer, - sp_buflen, &sp) != 0 && errno == ERANGE) - { - errno = 0; - sp_buflen += 256; - sp_buffer = alloca (sp_buflen); - } - - if (seteuid (save_uid) < 0) - { - pam_syslog (pamh, LOG_ERR, "account: seteuid(%d) faild", save_uid); - return PAM_PERM_DENIED; - } - } - /* Always call expire, could be that root is enforced to change root password. */ retval = expire (pamh, flags, sp, pw->pw_uid); ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org