-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 10 Feb 2025 21:06:21 +0100 Source: pam-pkcs11 Binary: libpam-pkcs11 libpam-pkcs11-dbgsym Architecture: ppc64el Version: 0.6.12-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: ppc64el Build Daemon (ppc64el-osuosl-02) Changed-By: Salvatore Bonaccorso Description: libpam-pkcs11 - Fully featured PAM module for using PKCS#11 smart cards Closes: 1095402 Changes: pam-pkcs11 (0.6.12-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Fixed possible authentication bypass: Don't return PAM_IGNORE (CVE-2025-24531) (Closes: #1095402) * fixed possible authentication bypass: Use signatures to verify authentication by default (CVE-2025-24032) * Update configuration files for the CVE-2025-24032 fix Checksums-Sha1: 125c9feeb38430304f82ea50367184b8269b69a3 711404 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_ppc64el.deb b94c794533300ec801f561f30132a57b89d1b9ff 157380 libpam-pkcs11_0.6.12-1+deb12u1_ppc64el.deb 66e3c3022e0b8ac9e12d155e536391d06fd047ab 6967 pam-pkcs11_0.6.12-1+deb12u1_ppc64el-buildd.buildinfo Checksums-Sha256: 8c6f93d457124db0ed8a04e6addb9870c02368d426f4f4418b5a8ed5a6afcf10 711404 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_ppc64el.deb d29033e4926fd5262ede3eb2b818c4b045441dff2d28b25ba9a52a1c20794bad 157380 libpam-pkcs11_0.6.12-1+deb12u1_ppc64el.deb d49eee5efad496522937ca401541ca2f3c9242f085735c55942332ba5a1741a8 6967 pam-pkcs11_0.6.12-1+deb12u1_ppc64el-buildd.buildinfo Files: 8b0fedc8798d9b46d1ee4ab7b9ac3ea2 711404 debug optional libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_ppc64el.deb 26f26e730705c996ed8e58d969bae461 157380 admin optional libpam-pkcs11_0.6.12-1+deb12u1_ppc64el.deb 42b6542bdab8abe76a17bea2888cbea9 6967 admin optional pam-pkcs11_0.6.12-1+deb12u1_ppc64el-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0YcVZfZCWQv84jpRNcqbeolus3sFAmeqZeMACgkQNcqbeolu s3ucRxAAuuulQMatc7K2mxLSX6ZJ3dT+81xCwGkR9rqrHlIRED8HRRLeziJfkIh2 EF7RcHslN6nZSyHKFX8Ii4ZMJAHN6Z17wFvBMl+tslWL0w/gryoLG9q9hai+0HEC LWptDWkWEPDIWk0wFWGu5oaMC0itrMs5GrMpe6irb8TzuEfsoitfJ0MoYTr+Jp/U T/BdoUcYSkNvGw1gpjhOpWwmwEe/4WHbjV+uFTPwX33d0yLpUXUsoOuH8rUxZeL4 aCaPFJoyl3HutcXaSE7h1QHka8Jz4oi9rGaKxFa+Gbg97s4wJBlzaC3SnsblxYkZ Mu6e2D2wc0atEEZEvOAJ199OWedf8jkhTahxwwdLvgvQGgo/b1rNvFYXa27q90Wr 9pMI929aDZ3wVlR64R+T+TYBmVmZp6vgwnr4iwThH210U28Cs8wr9S/dU7od7ISq nN+Wj1+e8piOu9we3sFK7ucZ47FEehVH4ZIzb5N+UDTKpO3xL71hrGdJw/e4J6i5 nGTysQZ+BGInGFPwcjU0tEZXJuAzwU8epRRYzLWjgMwORWIfvTlu7Gp0ivZ05OP9 nk6k/8QA80S0VSLBR9RatCCj0MLyEgr43UciDXCcda4U9AgmfAnmvjGlvxr9SF5e LA0seWjYq9kZ3zKGcersvsIRZt8D745Q2p3h/eTduWkLs1vZyXo= =hRU+ -----END PGP SIGNATURE-----