Overview

File _patchinfo of Package patchinfo.32004

<patchinfo incident="32004">
  <issue tracker="bnc" id="1217000">sshd crash : commit in pam_lastlog might be involved</issue>
  <issue tracker="bnc" id="1218475">VUL-0: CVE-2024-22365: EMBARGOED: pam: pam_namespace misses O_DIRECTORY flag in `protect_dir()`</issue>
  <issue tracker="cve" id="2024-22365"/>
  <packager>tabraham1</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for pam</summary>
  <description>This update for pam fixes the following issues:

- CVE-2024-22365: Fixed a local denial of service during PAM login
  due to a missing check during path manipulation (bsc#1218475).
- Check localtime_r() return value to fix crashing (bsc#1217000) 
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places