- Issued:
- 2011-05-19
- Updated:
- 2011-05-19
RHBA-2011:0688 - Bug Fix Advisory
Synopsis
pam_ldap bug fix
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated pam_ldap package that fixes two bugs is now available for Red Hat
Enterprise Linux 6.
Description
The pam_ldap module is a Pluggable Authentication Module (PAM) which allows for
authentication, authorization and password changes against LDAP servers.
This update fixes the following bugs:
- Previously, the password aging policy for users on LDAP servers used a
resolution of one day. Due to this issue, users whose password was going to
expire in less than a day would not be warned of the impending expiration. This
update changes the resolution. Now, a password expiry warning is also shown on
the last day when the password expires within the next 24 hours. (BZ#637190)
- Applications which authenticate multiple users in succession using pam_ldap
may leak memory which libraries on which the module depends allocate and
initialize when they are loaded. This update marks the module so that it will
not be unloaded. Now these libraries and the memory they allocate are no longer
lost. (BZ#677338)
All users of pam_ldap are advised to upgrade to this updated package which fixes
these bugs.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259/
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
- Red Hat Enterprise Linux Server - Retired Extended Life Cycle Support 6 x86_64
Fixes
- BZ - 677338 - pam_authenticate() segmentation fault when using SSL/TLS in pam_ldap
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
x86_64 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-185-8.el6.x86_64.rpm | SHA-256: ffa3694cbff5c17cb38d5e2634ef39d0f5dadfa0cb4068adfbb43505ebdd9b9f |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
pam_ldap-debuginfo-185-8.el6.x86_64.rpm | SHA-256: 6b774c030ea1c9a240c724678e3893a218d74b6ee590f470239caedb565dc34d |
i386 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
x86_64 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-185-8.el6.x86_64.rpm | SHA-256: ffa3694cbff5c17cb38d5e2634ef39d0f5dadfa0cb4068adfbb43505ebdd9b9f |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
pam_ldap-debuginfo-185-8.el6.x86_64.rpm | SHA-256: 6b774c030ea1c9a240c724678e3893a218d74b6ee590f470239caedb565dc34d |
i386 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
Red Hat Enterprise Linux Workstation 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
x86_64 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-185-8.el6.x86_64.rpm | SHA-256: ffa3694cbff5c17cb38d5e2634ef39d0f5dadfa0cb4068adfbb43505ebdd9b9f |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
pam_ldap-debuginfo-185-8.el6.x86_64.rpm | SHA-256: 6b774c030ea1c9a240c724678e3893a218d74b6ee590f470239caedb565dc34d |
i386 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
Red Hat Enterprise Linux Desktop 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
x86_64 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-185-8.el6.x86_64.rpm | SHA-256: ffa3694cbff5c17cb38d5e2634ef39d0f5dadfa0cb4068adfbb43505ebdd9b9f |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
pam_ldap-debuginfo-185-8.el6.x86_64.rpm | SHA-256: 6b774c030ea1c9a240c724678e3893a218d74b6ee590f470239caedb565dc34d |
i386 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
Red Hat Enterprise Linux for IBM z Systems 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
s390x | |
pam_ldap-185-8.el6.s390.rpm | SHA-256: fed70daaec7762080f5f12011ac15a62a798ed1c6767e901da9ea584b144717f |
pam_ldap-185-8.el6.s390x.rpm | SHA-256: 444cc9b6b2aedc6b9a7ae5b3bc3eff914db25b44e8df284fffb90b70b321fd0f |
pam_ldap-debuginfo-185-8.el6.s390.rpm | SHA-256: 9ae203fc8cf9dcbfc0a5d80617675050deb3c25ad0e7d61835b1a0bbf2bb5313 |
pam_ldap-debuginfo-185-8.el6.s390x.rpm | SHA-256: 335a46a56fa0a0fbd707eebdf0345d72be11d17386a201fd7f63456dc91ce631 |
Red Hat Enterprise Linux for Power, big endian 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
ppc64 | |
pam_ldap-185-8.el6.ppc.rpm | SHA-256: 232d6c566065a6f4bd0e0340fd8607c4d69d3a43207db46149350e3449eb4e93 |
pam_ldap-185-8.el6.ppc64.rpm | SHA-256: 93acee55ddb332595eb7307707ba4dc873a48f22779230ed91eebb9dcfd156e8 |
pam_ldap-debuginfo-185-8.el6.ppc.rpm | SHA-256: 90505d2d2c348e60311152426382c72581aaed8b09ff283b06d39862531662d8 |
pam_ldap-debuginfo-185-8.el6.ppc64.rpm | SHA-256: dccfabe8c5192614a5a18669684ff9943a1bccafeca494fb53c95e31dd63b2ee |
Red Hat Enterprise Linux Server from RHUI 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
x86_64 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-185-8.el6.x86_64.rpm | SHA-256: ffa3694cbff5c17cb38d5e2634ef39d0f5dadfa0cb4068adfbb43505ebdd9b9f |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
pam_ldap-debuginfo-185-8.el6.x86_64.rpm | SHA-256: 6b774c030ea1c9a240c724678e3893a218d74b6ee590f470239caedb565dc34d |
i386 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
s390x | |
pam_ldap-185-8.el6.s390.rpm | SHA-256: fed70daaec7762080f5f12011ac15a62a798ed1c6767e901da9ea584b144717f |
pam_ldap-185-8.el6.s390x.rpm | SHA-256: 444cc9b6b2aedc6b9a7ae5b3bc3eff914db25b44e8df284fffb90b70b321fd0f |
pam_ldap-debuginfo-185-8.el6.s390.rpm | SHA-256: 9ae203fc8cf9dcbfc0a5d80617675050deb3c25ad0e7d61835b1a0bbf2bb5313 |
pam_ldap-debuginfo-185-8.el6.s390x.rpm | SHA-256: 335a46a56fa0a0fbd707eebdf0345d72be11d17386a201fd7f63456dc91ce631 |
Red Hat Enterprise Linux Server - Retired Extended Life Cycle Support 6
SRPM | |
---|---|
pam_ldap-185-8.el6.src.rpm | SHA-256: 4a896cf80b158ef5878bcc2c089e288bb2a45d18a921c85738b0d6d82ece6a5d |
x86_64 | |
pam_ldap-185-8.el6.i686.rpm | SHA-256: 77214ac0a3e45f17d8cd636b5ca93674e21ba1011929ea633783bdfe6600f664 |
pam_ldap-185-8.el6.x86_64.rpm | SHA-256: ffa3694cbff5c17cb38d5e2634ef39d0f5dadfa0cb4068adfbb43505ebdd9b9f |
pam_ldap-debuginfo-185-8.el6.i686.rpm | SHA-256: 7dd6f02c571d32b3f05142cc1c9ecd7fdaeb3df803b985c87e2d532e90b720b6 |
pam_ldap-debuginfo-185-8.el6.x86_64.rpm | SHA-256: 6b774c030ea1c9a240c724678e3893a218d74b6ee590f470239caedb565dc34d |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.