Relevant BUGIDs: debian#514437 rhbz#487216

Purpose of commit: bugfix Commit summary: --------------- 2009-02-26 Tomas Mraz <t8m@centrum.cz> * xtests/Makefile.am: Add tst-pam_unix4. * xtests/tst-pam_unix4.c: New test for password change and shadow min days limit. * xtests/tst-pam_unix4.pamd: Likewise. * xtests/tst-pam_unix4.sh: Likewise. * modules/pam_unix/pam_unix_acct.c (pam_sm_acct_mgmt): Ignore PAM_AUTHTOK_ERR on shadow verification. * modules/pam_unix/passverify.c (check_shadow_expiry): Return PAM_AUTHTOK_ERR if sp_min limit for password change is defied.
author: Tomas Mraz <tm@t8m.info> 2009-02-26 18:56:12 +0000
committer: Tomas Mraz <tm@t8m.info> 2009-02-26 18:56:12 +0000
commit: 5891c5508e3b9ba699a6a6ba3dae9221a45528e5 (patch)
tree: 11f0bfce0b989303da194baff95d4655733b9dcc /NEWS
parent: ca06584b38da8c44c26da19399a1bfd802ef5ee4 (diff)
download: pam-5891c5508e3b9ba699a6a6ba3dae9221a45528e5.tar.gz
pam-5891c5508e3b9ba699a6a6ba3dae9221a45528e5.tar.bz2
pam-5891c5508e3b9ba699a6a6ba3dae9221a45528e5.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index d41c0556..96724b1b 100644
--- a/NEWS
+++ b/NEWS
@@ -1,5 +1,6 @@
 Linux-PAM NEWS -- history of user-visible changes.
 
+* Fixed CVE-2009-0579 (minimum days limit on password change is ignored).
 
 Release 1.0.90
author	Tomas Mraz <tm@t8m.info>	2009-02-26 18:56:12 +0000
committer	Tomas Mraz <tm@t8m.info>	2009-02-26 18:56:12 +0000
commit	5891c5508e3b9ba699a6a6ba3dae9221a45528e5 (patch)
tree	11f0bfce0b989303da194baff95d4655733b9dcc /NEWS
parent	ca06584b38da8c44c26da19399a1bfd802ef5ee4 (diff)
download	pam-5891c5508e3b9ba699a6a6ba3dae9221a45528e5.tar.gz pam-5891c5508e3b9ba699a6a6ba3dae9221a45528e5.tar.bz2 pam-5891c5508e3b9ba699a6a6ba3dae9221a45528e5.zip