Description:
Pluggable Authentication Modules (PAM) provide a system to set up authentication policies without the need to recompile programs to handle authentication.
Security Fix(es):
* pam: libpam: Libpam vulnerable to read hashed password (CVE-2024-10041)
* pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass (CVE-2024-10963)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
pam-1.3.1-36.el8_10.aarch64.rpm |
054d931f75df3f26b78d95ada429ff13d792c6cee81656e64e731b25c2556271 |
| aarch64 |
pam-devel-1.3.1-36.el8_10.aarch64.rpm |
b053667297703caba716b273c252b9aedb906a9cb663afc292d90309d100d53c |
| i686 |
pam-1.3.1-36.el8_10.i686.rpm |
31f77c2f533a497ca75c0c15b3aa7acdac0b4374c52cc3690430d33c945739d4 |
| i686 |
pam-devel-1.3.1-36.el8_10.i686.rpm |
70eb60d29e4a4865a1a174a254ce42befec565c969144f4d9a05c34fbd66e750 |
| ppc64le |
pam-devel-1.3.1-36.el8_10.ppc64le.rpm |
5e1696b2d381f18974b2ab699c01769788f173682db66b1688d1f6636955cb5f |
| ppc64le |
pam-1.3.1-36.el8_10.ppc64le.rpm |
a14a0daece631df6265feecf8624d1f9bce6da8bd34c9205df58d8fb11d7c9b1 |
| s390x |
pam-1.3.1-36.el8_10.s390x.rpm |
3fc4565279b9713dc69c2e928190c5eef43929aec3c760f813fba1e8516fb3af |
| s390x |
pam-devel-1.3.1-36.el8_10.s390x.rpm |
ac1cba60863a19c8aa0a2aafcea9d145aadc5bd8d67464ce04f30e7233be0a84 |
| x86_64 |
pam-devel-1.3.1-36.el8_10.x86_64.rpm |
1378a38d4c402cefec0728defe6dfb73037c4a7bbc78c3393bb627006a93ce3f |
| x86_64 |
pam-1.3.1-36.el8_10.x86_64.rpm |
ec206aee4eac5b4319e9dcb4ea13abac1326a7f22afa128d50d2b26eba67c128 |
