From 2116a336a5022f260dd9f7368b5007d9439eb2aa Mon Sep 17 00:00:00 2001 From: Adolf Belka Date: Fri, 20 Jun 2025 15:57:07 +0200 Subject: [PATCH] pam: Update to version 1.7.1 - Update from version 1.7.0 to 1.7.1 - Update of rootfile not required - This version fixes a CVE. However this is for a local to root permission escalation. So unlikely to be an issue for IPFire if access is tightly controlled. Also the vulnerability is related to pam_access and requires the configuration file for that to be defined with user rules that can be confused with hostnames. pam_access.so is installed on IPFire but no configuration file. - Although the risk for IPFire is very low it makes sense to update to the fix. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer --- lfs/pam | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/lfs/pam b/lfs/pam index b2847d0a6..577d40aa1 100644 --- a/lfs/pam +++ b/lfs/pam @@ -1,7 +1,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2024 IPFire Team # +# Copyright (C) 2007-2025 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -24,7 +24,7 @@ include Config -VER = 1.7.0 +VER = 1.7.1 THISAPP = Linux-PAM-$(VER) DL_FILE = $(THISAPP).tar.xz @@ -45,7 +45,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = 39c8c2ccc6f7d125d12d49439ae44cb8fe115f0529549269246e54f4b4de0b3b24c1099e4d3fa39d4e477af8a92b66dd6dc2cb93f0643ab7b56bcaabdd3b8539 +$(DL_FILE)_BLAKE2 = 0a64d7dbf6bb7e3d2c36ea1f29c3217d3e43a1cc0ba8adf2ee8a117946a53bd26634ebd70ff3b99a72f7373df6694ee054dc7eddab04e43bbc8f5b0e9e56b3bc install : $(TARGET) -- 2.47.3