Changelog
pam (1.1.3-1) unstable; urgency=low
* New upstream release. - Fixes CVE-2010-3853, executing namespace.init with an insecure environment set by the caller. Closes: #608273. - Fixes CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435. Closes: #599832. * Port hurd_no_setfsuid patch to new pam_modutil_{drop,restore}_priv interface; now possibly upstreamable * debian/patches-applied/027_pam_limits_better_init_allow_explicit_root: set a better default RLIMIT_MEMLOCK value for BSD kernels. Thanks to Petr Salinger for the fix. Closes: #602902. * bump the minimum version check in maintainer scripts for the restart handling. -- Steve Langasek <email address hidden> Sat, 04 Jun 2011 03:10:50 -0700