pam-1.5.1-22.el9_5
エラータID: AXSA:2024-9416:06
Release date:
Wednesday, December 18, 2024 - 18:48
Subject:
pam-1.5.1-22.el9_5
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
Pluggable Authentication Modules (PAM) provide a system to set up authentication
policies without the need to recompile programs to handle authentication.
Security Fix(es):
pam: Improper Hostname Interpretation in pam_access Leads to Access Control
Bypass (CVE-2024-10963)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Solution:
Update packages.
CVEs:
CVE-2024-10963
A flaw was found in pam_access, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers to trick the system by pretending to be a trusted hostname, gaining unauthorized access. This issue poses a risk for systems that rely on this feature to control who can access certain services or terminals.
A flaw was found in pam_access, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers to trick the system by pretending to be a trusted hostname, gaining unauthorized access. This issue poses a risk for systems that rely on this feature to control who can access certain services or terminals.
Additional Info:
N/A
Download:
SRPMS
- pam-1.5.1-22.el9_5.src.rpm
MD5: 327e94933ba3861af159f46bc1e8302e
SHA-256: 8f98f7085d9abb89596c7d78d690a379c3d030fb08f5c2256dc9b03ada8ae2fa
Size: 1.06 MB
Asianux Server 9 for x86_64
- pam-1.5.1-22.el9_5.i686.rpm
MD5: 96cc62f10043b9d7fa869f0f18f6d675
SHA-256: a386b661eeda87e0a4b2f839870f6a411df8823cab289cbc7dba069a983a5ecc
Size: 623.63 kB - pam-1.5.1-22.el9_5.x86_64.rpm
MD5: b0c561056c961bced23598ca0b5245f5
SHA-256: e3e8b8e8cc65bc148d262549c4accd800e453fcd89e84df96ba4c9d6239c0687
Size: 602.52 kB - pam-devel-1.5.1-22.el9_5.i686.rpm
MD5: 1df3506df3251ed5b4e8e3941b775635
SHA-256: d8ecd3c9a9c2d7f15c677bdc69fcb47d1c1b8b4c5e1f45b075ba6a2a4468bce6
Size: 163.70 kB - pam-devel-1.5.1-22.el9_5.x86_64.rpm
MD5: 31edf3e4fe7280666e24c2ad566b62f0
SHA-256: 0c8de66b29eac1cdfcf93470cda8ae50e8ee7ecc3cf8d23cd6763bdcc25609cc
Size: 163.67 kB - pam-docs-1.5.1-22.el9_5.x86_64.rpm
MD5: 407221a96487cd9f75536d2a12ded352
SHA-256: 7ca39d6fbb0cd5332992c3b286fd4fdff871c480ade80463f16c463d0fb78c86
Size: 128.86 kB
日本語