-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 24 May 2008 22:30:02 +0200 Source: pam-pgsql Binary: libpam-pgsql Architecture: source amd64 Version: 0.6.3-2 Distribution: unstable Urgency: high Maintainer: Debian QA Group <packages@qa.debian.org> Changed-By: Michael Schutte <m.schutte.jr@gmail.com> Description: libpam-pgsql - PAM module to authenticate using a PostgreSQL database Closes: 481970 Changes: pam-pgsql (0.6.3-2) unstable; urgency=high . * High-urgency QA upload to get security fix into testing. * Fix upstream security issue that granted root access when pressing Ctrl-C in sudo’s authentication conversation, closes: #481970. The problem was caused by a mistake in operator precedence leading to a pam_get_pass call always being considered successful; it is fixed by adding a level of parentheses. Checksums-Sha1: 78c783543a76baa7b28f285346215b9c976659a8 1082 pam-pgsql_0.6.3-2.dsc 12d86f585362f87e803668544413ca3c22b69072 5106 pam-pgsql_0.6.3-2.diff.gz b867a431f7229ad005de8453af03b17ce4f9b8f0 17178 libpam-pgsql_0.6.3-2_amd64.deb Checksums-Sha256: 95acadfe56318b7fed4a24edc02bdbb3c1a2cec3b90f1a08a1a113fbc7a3e454 1082 pam-pgsql_0.6.3-2.dsc 9e9195eb9f94ba66d3463e69e18c44c5b0a37ef393da4025c2e9aa3eaa8e1ecd 5106 pam-pgsql_0.6.3-2.diff.gz 6e262c9d4f232f6ef48f9c9e86617b8b94fe8d6657f3365a0da1af47e6f8aff3 17178 libpam-pgsql_0.6.3-2_amd64.deb Files: 739450cdd245fd211f671c11ef2fcdd0 1082 admin extra pam-pgsql_0.6.3-2.dsc b5723e7ce8cfea41f4234185195d28b2 5106 admin extra pam-pgsql_0.6.3-2.diff.gz 4c035ce8229e7c5714d22a3901f41cf0 17178 admin extra libpam-pgsql_0.6.3-2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIOH0JHYflSXNkfP8RAvu0AJ0YGpwf0ob+Lz9GnwgXDDRUEod4TACgjfMd GxXJdOex/AUrm9/9FMhL95g= =FoT5 -----END PGP SIGNATURE----- Accepted: libpam-pgsql_0.6.3-2_amd64.deb to pool/main/p/pam-pgsql/libpam-pgsql_0.6.3-2_amd64.deb pam-pgsql_0.6.3-2.diff.gz to pool/main/p/pam-pgsql/pam-pgsql_0.6.3-2.diff.gz pam-pgsql_0.6.3-2.dsc to pool/main/p/pam-pgsql/pam-pgsql_0.6.3-2.dsc
