-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 10 Mar 2011 22:00:00 +0100 Source: nss-pam-ldapd Binary: nslcd libnss-ldapd libpam-ldapd Architecture: source i386 Version: 0.8.1 Distribution: experimental Urgency: low Maintainer: Arthur de Jong <adejong@debian.org> Changed-By: Arthur de Jong <adejong@debian.org> Description: libnss-ldapd - NSS module for using LDAP as a naming service libpam-ldapd - PAM module for using LDAP as an authentication service nslcd - Daemon for NSS and PAM lookups using LDAP Closes: 610925 Changes: nss-pam-ldapd (0.8.1) experimental; urgency=low . * SECURITY FIX: the PAM module will allow authentication for users that do not exist in LDAP, this allows login to local users with an incorrect password (CVE-2011-0438) the explotability of the problem depends on the details of the PAM stack and the use of the minimum_uid PAM option * add FreeBSD support, partially imported from the FreeBSD port (thanks to Jacques Vidrine, Artem Kazakov and Alexander V. Chernikov) * document how to replace name pam_check_service_attr and pam_check_host_attr options in PADL's pam_ldap with with pam_authz_search in nss-pam-ldapd (closes: #610925) * implement a fqdn variable that can be used in pam_authz_search filters * create the directory to hold the socket and pidfile on startup * implement host, network and netgroup support in pynslcd Checksums-Sha1: 21d65885f242a0c9cef23c072662454e3bd031e3 1102 nss-pam-ldapd_0.8.1.dsc 3507457b09667affe73538e09cbb404e31b7f718 532186 nss-pam-ldapd_0.8.1.tar.gz 8cd3a9fffde91c8230953d7777766eb38d1f79a8 128144 nslcd_0.8.1_i386.deb 12c6c768ae7356a45b2b9591ea1ad98112678215 45218 libnss-ldapd_0.8.1_i386.deb 701b818745b4eb2a3e96f5ae4e1435ab216dd2f9 38280 libpam-ldapd_0.8.1_i386.deb Checksums-Sha256: 5313ddb1810abad94f8872e3913b9068afc67c32a611bc46db9784b33f4b294c 1102 nss-pam-ldapd_0.8.1.dsc ea2f11a26967e9bcaa8fda4e547fdfbf1dae5b23312f2ee8a79dedc2b3d5c91d 532186 nss-pam-ldapd_0.8.1.tar.gz af01f74d2d21c44148a0bf840951cdc629b7831427e84a4806745f986013edb9 128144 nslcd_0.8.1_i386.deb d40f90f22fa6018a72faa39678dd62bb00a621140613f0c5103332b73091a000 45218 libnss-ldapd_0.8.1_i386.deb 35bf91c7d23ecad26a76652866c501556fbe1b483ddaf04694c9dd7a696c3458 38280 libpam-ldapd_0.8.1_i386.deb Files: d315209b322dbe8b753830adceff05ad 1102 admin extra nss-pam-ldapd_0.8.1.dsc 8d3216b76e1291f95072466508ad8b26 532186 admin extra nss-pam-ldapd_0.8.1.tar.gz ab5ab3975d9669fafd868f7b3415abf7 128144 admin extra nslcd_0.8.1_i386.deb e196e10fefe011aea20cfedb6f1f957d 45218 admin extra libnss-ldapd_0.8.1_i386.deb b68cdcd65509556be8d98ac278b6e3ae 38280 admin extra libpam-ldapd_0.8.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk15RtoACgkQVYan35+NCKfDgACeMgcqRzQ2F7FpEI7h7J7azQVX EtMAn02ckIZzsiBB5jG21kETtz9yqhGt =C+zX -----END PGP SIGNATURE----- Accepted: libnss-ldapd_0.8.1_i386.deb to main/n/nss-pam-ldapd/libnss-ldapd_0.8.1_i386.deb libpam-ldapd_0.8.1_i386.deb to main/n/nss-pam-ldapd/libpam-ldapd_0.8.1_i386.deb nslcd_0.8.1_i386.deb to main/n/nss-pam-ldapd/nslcd_0.8.1_i386.deb nss-pam-ldapd_0.8.1.dsc to main/n/nss-pam-ldapd/nss-pam-ldapd_0.8.1.dsc nss-pam-ldapd_0.8.1.tar.gz to main/n/nss-pam-ldapd/nss-pam-ldapd_0.8.1.tar.gz
