[ubuntu/xenial-proposed] pam 1.1.8-3.2ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Wed Mar 16 14:37:17 UTC 2016 

pam (1.1.8-3.2ubuntu1) xenial; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - debian/libpam-modules.postinst: Add PATH to /etc/environment if it's
      not present there or in /etc/security/pam_env.conf. (should send to
      Debian).
    - debian/libpam0g.postinst: only ask questions during update-manager when
      there are non-default services running.
    - debian/libpam0g.postinst: check if gdm is actually running before
      trying to reload it.
    - debian/libpam0g.postinst: the init script for 'samba' is now named
      'smbd' in Ubuntu, so fix the restart handling.
    - Change Vcs-Bzr to point at the Ubuntu branch.
    - debian/patches-applied/series: Ubuntu patches are as below ...
    - debian/patches-applied/ubuntu-rlimit_nice_correction: Explicitly
      initialise RLIMIT_NICE rather than relying on the kernel limits.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
      Deprecate pam_unix's explicit "usergroups" option and instead read it
      from /etc/login.def's "USERGROUP_ENAB" option if umask is only defined
      there. This restores compatibility with the pre-PAM behaviour of login.
    - debian/patches-applied/pam_motd-legal-notice: display the contents of
      /etc/legal once, then set a flag in the user's homedir to prevent
      showing it again.
    - debian/update-motd.5, debian/libpam-modules.manpages: add a manpage
      for update-motd, with some best practices and notes of explanation.
    - debian/patches/update-motd-manpage-ref: add a reference in pam_motd(8)
      to update-motd(5)
    - debian/local/common-session{,-noninteractive}: Enable pam_umask by
      default, now that the umask setting is gone from /etc/profile.
    - debian/local/pam-auth-update: Add the new md5sums for pam_umask addition.
    - Build-depend on libfl-dev in addition to flex, for cross-building
      support.
    - Add /usr/local/games to PATH.
    - Adjust debian/patches-applied/update-motd to write to
      /run/motd.dynamic, as sysvinit/ssh/login in Debian have been changed
      to use this file and no longer links /etc/motd to /var/run/motd.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
      include patch to autogenerated manpage file
    - debian/patches-applied/pam-loginuid-in-containers: pam_loginuid:
      Update patch with follow-up changes to loginuid.c
    - debian/patches-applied/extrausers.patch: Add a pam_extrausers module
      that is basically just a copy of pam_unix but looks at
      /var/lib/extrausers/{group,passwd,shadow} instead of /etc/
    - debian/libpam-modules-bin.install: install the helper binaries for
      pam_extrausers to /sbin
    - debian/rules: Make pam_extrausers_chkpwd sguid shadow
    - debian/patches-applied/extrausers.patch: Ship pre-generated man page
    - debian/patches-applied/pam-limits-nofile-fd-setsize-cap: cap the default
      soft nofile limit read from pid 1 to FD_SETSIZE.
    - debian/control: have libpam-modules recommend update-motd package

pam (1.1.8-3.2) unstable; urgency=medium

  * Non-maintainer upload.
  * Fix CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix
    module (Closes: #789986)

Date: Wed, 16 Mar 2016 09:50:51 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/pam/1.1.8-3.2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 16 Mar 2016 09:50:51 -0400
Source: pam
Binary: libpam0g libpam-modules libpam-modules-bin libpam-runtime libpam0g-dev libpam-cracklib libpam-doc
Architecture: source
Version: 1.1.8-3.2ubuntu1
Distribution: xenial
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
 libpam-cracklib - PAM module to enable cracklib support
 libpam-doc - Documentation of PAM
 libpam-modules - Pluggable Authentication Modules for PAM
 libpam-modules-bin - Pluggable Authentication Modules for PAM - helper binaries
 libpam-runtime - Runtime support for the PAM library
 libpam0g   - Pluggable Authentication Modules library
 libpam0g-dev - Development files for PAM
Closes: 789986
Changes:
 pam (1.1.8-3.2ubuntu1) xenial; urgency=medium
 .
   * Merge from Debian unstable. Remaining changes:
     - debian/libpam-modules.postinst: Add PATH to /etc/environment if it's
       not present there or in /etc/security/pam_env.conf. (should send to
       Debian).
     - debian/libpam0g.postinst: only ask questions during update-manager when
       there are non-default services running.
     - debian/libpam0g.postinst: check if gdm is actually running before
       trying to reload it.
     - debian/libpam0g.postinst: the init script for 'samba' is now named
       'smbd' in Ubuntu, so fix the restart handling.
     - Change Vcs-Bzr to point at the Ubuntu branch.
     - debian/patches-applied/series: Ubuntu patches are as below ...
     - debian/patches-applied/ubuntu-rlimit_nice_correction: Explicitly
       initialise RLIMIT_NICE rather than relying on the kernel limits.
     - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
       Deprecate pam_unix's explicit "usergroups" option and instead read it
       from /etc/login.def's "USERGROUP_ENAB" option if umask is only defined
       there. This restores compatibility with the pre-PAM behaviour of login.
     - debian/patches-applied/pam_motd-legal-notice: display the contents of
       /etc/legal once, then set a flag in the user's homedir to prevent
       showing it again.
     - debian/update-motd.5, debian/libpam-modules.manpages: add a manpage
       for update-motd, with some best practices and notes of explanation.
     - debian/patches/update-motd-manpage-ref: add a reference in pam_motd(8)
       to update-motd(5)
     - debian/local/common-session{,-noninteractive}: Enable pam_umask by
       default, now that the umask setting is gone from /etc/profile.
     - debian/local/pam-auth-update: Add the new md5sums for pam_umask addition.
     - Build-depend on libfl-dev in addition to flex, for cross-building
       support.
     - Add /usr/local/games to PATH.
     - Adjust debian/patches-applied/update-motd to write to
       /run/motd.dynamic, as sysvinit/ssh/login in Debian have been changed
       to use this file and no longer links /etc/motd to /var/run/motd.
     - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
       include patch to autogenerated manpage file
     - debian/patches-applied/pam-loginuid-in-containers: pam_loginuid:
       Update patch with follow-up changes to loginuid.c
     - debian/patches-applied/extrausers.patch: Add a pam_extrausers module
       that is basically just a copy of pam_unix but looks at
       /var/lib/extrausers/{group,passwd,shadow} instead of /etc/
     - debian/libpam-modules-bin.install: install the helper binaries for
       pam_extrausers to /sbin
     - debian/rules: Make pam_extrausers_chkpwd sguid shadow
     - debian/patches-applied/extrausers.patch: Ship pre-generated man page
     - debian/patches-applied/pam-limits-nofile-fd-setsize-cap: cap the default
       soft nofile limit read from pid 1 to FD_SETSIZE.
     - debian/control: have libpam-modules recommend update-motd package
 .
 pam (1.1.8-3.2) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix
     module (Closes: #789986)
Checksums-Sha1:
 7ece8f8c99ec538385afd213a3188c9e03717d95 2589 pam_1.1.8-3.2ubuntu1.dsc
 d055ed81373280a372468c2434cea6313f8d57a8 1892765 pam_1.1.8.orig.tar.gz
 0bfaa3bae4f9c5546fa0fec5c6c9cd7f29c7cfaf 199167 pam_1.1.8-3.2ubuntu1.diff.gz
Checksums-Sha256:
 cebd967346a69a2b37d798f2d0e29047853cdfdd8ae3a236adc93a89d4a85271 2589 pam_1.1.8-3.2ubuntu1.dsc
 4183409a450708a976eca5af561dbf4f0490141a08e86e4a1e649c7c1b094876 1892765 pam_1.1.8.orig.tar.gz
 0b0914abff282307fb7878af3dc49b5cd536694c489c88d0d8c388ddfd1aa8d3 199167 pam_1.1.8-3.2ubuntu1.diff.gz
Files:
 fc3def2ddc17467d06f267b04f872bf5 2589 libs optional pam_1.1.8-3.2ubuntu1.dsc
 5107bbf54042400b6200e8367cc7feef 1892765 libs optional pam_1.1.8.orig.tar.gz
 bc3953f46d3bab8759ea907b7e645737 199167 libs optional pam_1.1.8-3.2ubuntu1.diff.gz
Original-Maintainer: Steve Langasek <vorlon at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJW6W7BAAoJEGVp2FWnRL6TBmEQAJqgJpHtYuDXXn9dAhIfs5kl
pFDw5X+PaXXXrvtrdzCJhewIq9zBiySk9RZLjpsFzc/tYaRJR01RiF+eAxU4n2Lx
GYD75NZWbz8E99+M/8CY2QsMSJgBY9SMUuhsoRoNk+uC0IdvkHCsfRVhKz/2zLXM
Mlnwuk3OyO0AJr5sSMy2uI0/XbIA51WEn/jEGtqS8cuSyR3RbaXktNhyK0Jq2sjH
7qyKpUnhmj1UMpBRWsMlC1DhUbGwdHBVJyWaepU0/qWI/yc3ml6FMRLC19quaV0k
LSAfc9gq2uOqehZyDTL5dqbds0SBaXdFiKEkieHDJc80IyCI0Dpa12IIttyKUHji
3GM4eztlr3l0ohRHHkCCRnngSH5TuxXbYg1M/NOMHVWdLKBNqom65j0HH/UmcZjH
vc4WHKzHTibaa6GbcrKIbuk7T+L187PsXByyDdv6m4v5ezGWAgVKMa88AWWJiRpM
WhPQB/Bzu1Y/q6i1javrBc6t2+kzwerc30QKiBALarweFsdVUSbLn7hh3X62zD5M
bSYUzrXqs4zCLj3WF8MJ1kpp57GOAANMUd/45NQ1ebL8CPddua3OELRQgGnfEVS8
278m5aV6hBOirj7RgJ31rz0/Guw4vjc20XArWxLTFiAIfi5+ZXkolDbpR++ALhKw
Jm90sPTBWO5F1bbob0qN
=KGhI
-----END PGP SIGNATURE-----

More information about the Xenial-changes mailing list