The pam_env module is vulnerable to a stack overflow
(CVE-2011-3148) and a DoS condition (CVE-2011-3149) when
parsing users .pam_environment files.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 11.4 | x86_64 | pam-devel | < 1.1.3-4.9.1 | pam-devel-1.1.3-4.9.1.x86_64.rpm |
openSUSE | 11.4 | x86_64 | pam | < 1.1.3-4.9.1 | pam-1.1.3-4.9.1.x86_64.rpm |
openSUSE | 11.4 | x86_64 | pam-32bit | < 1.1.3-4.9.1 | pam-32bit-1.1.3-4.9.1.x86_64.rpm |
openSUSE | 11.4 | i586 | pam | < 1.1.3-4.9.1 | pam-1.1.3-4.9.1.i586.rpm |
openSUSE | 11.4 | i586 | pam-devel | < 1.1.3-4.9.1 | pam-devel-1.1.3-4.9.1.i586.rpm |
openSUSE | 11.4 | x86_64 | pam-devel-32bit | < 1.1.3-4.9.1 | pam-devel-32bit-1.1.3-4.9.1.x86_64.rpm |
openSUSE | 11.4 | i586 | pam-doc | < 1.1.3-4.9.1 | pam-doc-1.1.3-4.9.1.i586.rpm |
openSUSE | 11.4 | x86_64 | pam-doc | < 1.1.3-4.9.1 | pam-doc-1.1.3-4.9.1.x86_64.rpm |