Post by Jason Haa » Thu, 14 Oct 1999 04:00:00

LinuxPPC Security released a new security update for the pam utility

Package         pam (Pluggable Authentication Modules)
Problem         Bug fix: In certain network configurations,
                pam may allow access to locked NIS accounts.

Advisory:       http://www.linuxppc.com/security/1999/10/12-pam.shtml

LinuxPPC recommends pam users who use NIS upgrade immediately.

Note:  LinuxPPC R5/Q3 users don't need to re-enter their passwords if
they download this update. It uses a more recent code base than the  PAM
fix shipped by YDL, which didn't have any backwards compatibility,
therefore forcing users to re-enter their passwords.