Jump to content

Mandriva Security Advisories

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Browse
- Forums
- Events
- Staff
- Online Users
- Leaderboard
- More
Activity
- All Activity
- Search
- More
Leaderboard
More
- More

Advisories MDKSA-2007:111: Updated util-linux packages address login access policies bypassing issue

paul

By paul
June 4, 2007 in Mandriva Security Advisories

Share

Recommended Posts

paul

Platinum

paul

Posted June 4, 2007

- Report
- Share

Posted June 4, 2007

login in util-linux-2.12a (and later versions) skips pam_acct_mgmt

and chauth_tok when authentication is skipped, such as when a

Kerberos krlogin session has been established, which might allow

users to bypass intended access policies that would be enforced by

pam_acct_mgmt and chauth_tok.

Updated packages have been patched to address this issue.

Link to comment

Share on other sites

Guest

This topic is now closed to further replies.

Go to topic listing

×

Browse
- Back
- Browse
- Forums
- Events
- Staff
- Online Users
- Leaderboard
Activity
- Back
- All Activity
- Search
Leaderboard

×

Create New...