From 28b8c7045ac8ea4ea080bce02a2df9e3b9e98f06 Mon Sep 17 00:00:00 2001
From: Tomas Mraz <tmraz@fedoraproject.org>
Date: Tue, 24 Nov 2020 14:55:30 +0100
Subject: Add NEWS entries for the 1.5.1 security fix release

---
 NEWS | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index 5f86660d..bd4bca65 100644
--- a/NEWS
+++ b/NEWS
@@ -1,5 +1,10 @@
 Linux-PAM NEWS -- history of user-visible changes.
 
+Release 1.5.1
+* pam_unix: fixed CVE-2020-27780 - authentication bypass when an
+            user doesn't exist and root password is blank
+* pam_faillock: added nodelay option to not set pam_fail_delay
+
 Release 1.5.0
 * Multiple minor bug fixes, portability fixes, and documentation improvements.
 * Extended libpam API with pam_modutil_check_user_in_passwd function.
-- 
cgit v1.2.3