-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2020-dd6b868b6d 2020-02-27 15:46:28.028337 --------------------------------------------------------------------------------

Name : pam_radius Product : Fedora EPEL 6 Version : 1.4.0 Release : 4.el6 URL : http://www.freeradius.org/pam_radius_auth/ Summary : PAM Module for RADIUS Authentication Description : pam_radius is a PAM module which allows user authentication using a radius server.

-------------------------------------------------------------------------------- Update Information:

Security fix for CVE-2015-9542 -------------------------------------------------------------------------------- ChangeLog:

* Mon Apr 22 2019 Alexander Scheel ascheel@redhat.com - 1.4.0-4 - Fix NULL-termination of password buffer, garbage contents prior to hashing * Mon Mar 11 2019 Alexander Scheel ascheel@redhat.com 1.4.0-3 - Fix buffer overflow when hashing password * Wed Jan 21 2015 Peter Robinson pbrobinson@fedoraproject.org 1.4.0-2 - Update spec to guidelines and fix build on new arches * Sun Dec 21 2014 Tim Lank timlank@timlank.com 1.4.0-1 - Many changes. See USAGE for details. * Sun Feb 21 2010 Tim Lank timlank@timlank.com 1.3.17-2 - everything it takes to get this accepted for Fedora * Mon Oct 26 2009 Richard Monk rmonk@redhat.com 1.3.17-0 - Bump for new version - spec fixes for x86_64 builds * Mon Jun 3 2002 Richie Laager rlaager@wiktel.com 1.3.15-0 - Inital RPM Version -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1686980 - CVE-2015-9542 pam_radius: buffer overflow in password field https://bugzilla.redhat.com/show_bug.cgi?id=1686980 --------------------------------------------------------------------------------

This update can be installed with the "yum" update programs. Use su -c 'yum update pam_radius' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html

All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------