Overview
Request 597757 accepted
- Added patches:
- cloexec.patch: Harden file descriptor handling (boo#1089517)
- compiler-warnings-pointer.patch: Fix compiler warnings due to wrong pointer
casts (boo#1089518)
- compiler-warnings-format-strings.patch: Fix compiler warnings due to wrong
format string specifiers (boo#1089519)
- util_test-mkdtemp.patch: Use mkdtemp() instead of tempnam() (boo#1089520)
- leaking-file-descriptor.patch: Close the authfile before returning
to make sure no file descriptors are leaked (bsc#1088027).
- Version 2.25 (released 2018-03-27):
- Security: Storage of challenges in path with restricted permissions
- Perform OTP validation only if token is authorized
- Return early if the user has no authorized tokens
- Compare OTP IDs against `yubi_attr` only
- Add nullok support to challenge-response mode
- Several improvements to the documentation
- Improved debugging output and test cases
Request History
kbabioch created request
- Added patches:
- cloexec.patch: Harden file descriptor handling (boo#1089517)
- compiler-warnings-pointer.patch: Fix compiler warnings due to wrong pointer
casts (boo#1089518)
- compiler-warnings-format-strings.patch: Fix compiler warnings due to wrong
format string specifiers (boo#1089519)
- util_test-mkdtemp.patch: Use mkdtemp() instead of tempnam() (boo#1089520)
- leaking-file-descriptor.patch: Close the authfile before returning
to make sure no file descriptors are leaked (bsc#1088027).
- Version 2.25 (released 2018-03-27):
- Security: Storage of challenges in path with restricted permissions
- Perform OTP validation only if token is authorized
- Return early if the user has no authorized tokens
- Compare OTP IDs against `yubi_attr` only
- Add nullok support to challenge-response mode
- Several improvements to the documentation
- Improved debugging output and test cases
factory-auto added repo-checker as a reviewer
Please review build success
factory-auto accepted review
Check script succeeded
leaper added pam_yubico as a reviewer
Submission for pam_yubico by someone who is not maintainer in the devel project (security). Please review
leaper added leap-reviewers as a reviewer
leaper accepted review
ok
staging-bot added as a reviewer
Being evaluated by staging project "openSUSE:Leap:15.0:Staging:adi:19"
staging-bot accepted review
Picked openSUSE:Leap:15.0:Staging:adi:19
repo-checker accepted review
cycle and install check passed
Simmphonie accepted review
ok
lnussel declined review
sle package, please submit via SLE if needed
lnussel declined request
sle package, please submit via SLE if needed
lnussel reopened request
package is identical in SLE, reopen
lnussel accepted review
identical in SLE meanwhile actually
staging-bot accepted review
ready to accept
staging-bot approved review
ready to accept
lnussel_factory accepted request
Accept to openSUSE:Leap:15.0
openSUSE:Factory/pam_yubico@7 -> openSUSE:Leap:15.0/pam_yubico
expected origin is 'SUSE:SLE-15:GA' (changed)
the submitted sources are in or accepted for Factory