Overview

Request 597757 accepted

- Added patches:
- cloexec.patch: Harden file descriptor handling (boo#1089517)
- compiler-warnings-pointer.patch: Fix compiler warnings due to wrong pointer
casts (boo#1089518)
- compiler-warnings-format-strings.patch: Fix compiler warnings due to wrong
format string specifiers (boo#1089519)
- util_test-mkdtemp.patch: Use mkdtemp() instead of tempnam() (boo#1089520)

- leaking-file-descriptor.patch: Close the authfile before returning
to make sure no file descriptors are leaked (bsc#1088027).

- Version 2.25 (released 2018-03-27):
- Security: Storage of challenges in path with restricted permissions
- Perform OTP validation only if token is authorized
- Return early if the user has no authorized tokens
- Compare OTP IDs against `yubi_attr` only
- Add nullok support to challenge-response mode
- Several improvements to the documentation
- Improved debugging output and test cases

Leap Reviewbot's avatar
Leap Reviewbot (leaper) -
reviewer

openSUSE:Factory/pam_yubico@7 -> openSUSE:Leap:15.0/pam_yubico

expected origin is 'SUSE:SLE-15:GA' (changed)

the submitted sources are in or accepted for Factory

Request History
Karol Babioch's avatar

kbabioch created request

- Added patches:
- cloexec.patch: Harden file descriptor handling (boo#1089517)
- compiler-warnings-pointer.patch: Fix compiler warnings due to wrong pointer
casts (boo#1089518)
- compiler-warnings-format-strings.patch: Fix compiler warnings due to wrong
format string specifiers (boo#1089519)
- util_test-mkdtemp.patch: Use mkdtemp() instead of tempnam() (boo#1089520)

- leaking-file-descriptor.patch: Close the authfile before returning
to make sure no file descriptors are leaked (bsc#1088027).

- Version 2.25 (released 2018-03-27):
- Security: Storage of challenges in path with restricted permissions
- Perform OTP validation only if token is authorized
- Return early if the user has no authorized tokens
- Compare OTP IDs against `yubi_attr` only
- Add nullok support to challenge-response mode
- Several improvements to the documentation
- Improved debugging output and test cases

Factory Auto's avatar

factory-auto added repo-checker as a reviewer

Please review build success

Factory Auto's avatar

factory-auto accepted review

Check script succeeded

Leap Reviewbot's avatar

leaper added pam_yubico as a reviewer

Submission for pam_yubico by someone who is not maintainer in the devel project (security). Please review

Leap Reviewbot's avatar

leaper added leap-reviewers as a reviewer

Leap Reviewbot's avatar

leaper accepted review

ok

Staging Bot's avatar

staging-bot added as a reviewer

Being evaluated by staging project "openSUSE:Leap:15.0:Staging:adi:19"

Staging Bot's avatar

staging-bot accepted review

Picked openSUSE:Leap:15.0:Staging:adi:19

Repo Checker's avatar

repo-checker accepted review

cycle and install check passed

Torsten Gruner's avatar

Simmphonie accepted review

ok

Ludwig Nussel's avatar

lnussel declined review

sle package, please submit via SLE if needed

Ludwig Nussel's avatar

lnussel declined request

sle package, please submit via SLE if needed

Ludwig Nussel's avatar

lnussel reopened request

package is identical in SLE, reopen

Ludwig Nussel's avatar

lnussel accepted review

identical in SLE meanwhile actually

Staging Bot's avatar

staging-bot accepted review

ready to accept

Staging Bot's avatar

staging-bot approved review

ready to accept

Ludwig Nussel's avatar

lnussel_factory accepted request

Accept to openSUSE:Leap:15.0

openSUSE Build Service is sponsored by
Places