Security update for pam_pkcs11 SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:3369-1 Final 1 1 2018-10-24T08:57:07Z current 2018-10-24T08:57:07Z 2018-10-24T08:57:07Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for pam_pkcs11 This update for pam_pkcs11 provides the following fixes: Security issues fixed (bsc#1105012): - Fixed a logic bug in pampkcs11.c, leading to an authentication replay vulnerability - Fixed a stack-based buffer overflow in opensshmapper.c - Make sure memory is properly cleaned before invoking free() Other changes: - Add a systemd service file. (bsc#1049219) This update was imported from the SUSE:SLE-12:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2018-10/msg00054.html E-Mail link for openSUSE-SU-2018:3369-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 pam_pkcs11-0.6.8-13.3.1 pam_pkcs11-32bit-0.6.8-13.3.1 pam_pkcs11-0.6.8-13.3.1 as a component of openSUSE Leap 42.3 pam_pkcs11-32bit-0.6.8-13.3.1 as a component of openSUSE Leap 42.3