-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2014-02-24 09:17:15 UTC
-
Revision ID:
package-import@ubuntu.com-20140224091715-937wg42e3muwf7tl
Tags: 2.1.12+dfsg-1.1ubuntu0.1
* SECURITY UPDATE: incorrect password expiration check
- debian/patches/CVE-2011-4966.patch: check for both account and
password expiration in src/modules/rlm_unix/rlm_unix.c.
- CVE-2011-4966
* SECURITY UPDATE: denial of service and possible code execution via
buffer overflow in rlm_pap module
- debian/patches/CVE-2013-2015.patch: properly handle buffer size in
src/modules/rlm_pap/rlm_pap.c.
- CVE-2014-2015