1089517 – pam_yubico: File descriptor hardenings

Bug 1089517 - pam_yubico: File descriptor hardenings

Summary: pam_yubico: File descriptor hardenings

Status:	NEW

Alias:	None

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	General (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P5 - None Severity: Normal
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/203209/
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2018-04-13 13:47 UTC by Karol Babioch
Modified:	2018-04-18 12:30 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Karol Babioch 2018-04-13 13:47:50 UTC

There was a series of upstream patches that hardens the handling of file descriptors, which we should apply until a new upstream release will be made available (which will take a while).

References:
https://github.com/Yubico/yubico-pam/commit/e5bd2ef8449799d06f6f8dad3e602cc047e3c1af
https://github.com/Yubico/yubico-pam/commit/0b595ee1cdef6cbe0dc4123e3b09c999dc1b6968
https://github.com/Yubico/yubico-pam/commit/d51124e8846d1c43a8fb328ccec5672690b564fe
https://github.com/Yubico/yubico-pam/commit/079b975469efb6b80b24d50013ff2bf9572112d8

Comment 2 Swamp Workflow Management 2018-04-18 12:30:13 UTC

This is an autogenerated message for OBS integration:
This bug (1089517) was mentioned in
https://build.opensuse.org/request/show/597757 15.0 / pam_yubico