Overview

File pam_u2f.changes of Package pam_u2f

-------------------------------------------------------------------
Tue Jan 21 13:52:59 UTC 2025 - Paolo Perego <[email protected]>

- update to 1.3.2:
  * Relax authfile permission check to a warning instead of an error to prevent
    a breaking change locking existing users out of their systems. 

-------------------------------------------------------------------
Wed Jan 15 10:02:56 UTC 2025 - Paolo Perego <[email protected]>

- update to 1.3.1:
  * Fix incorrect usage of PAM_IGNORE (YSA-2025-01, CVE-2025-23013).
  * Changed return value when nouserok is enabled and the user has no
  credentials, PAM_IGNORE is used instead of PAM_SUCCESS.
  * Hardened checks of authfile permissions.
  * Hardened checks for nouserok.
  * Improved debug messages.
  * Improved documentation. 

-------------------------------------------------------------------
Sat Apr 15 12:01:02 UTC 2023 - Dirk Müller <[email protected]>

- update to 1.3.0:
  * Add sanity checking of UV options to pamu2fcfg.
  * Add support for username expansion in the authfile path.
  * Improvements to the documentation.

-------------------------------------------------------------------
Sun May 29 19:59:49 UTC 2022 - Dirk Müller <[email protected]>

- update to 1.2.1:
  * Fixed an issue where native credentials could be truncated, resulting in
    failure to authenticate or successful authentication with missing options.
  * Stricter parsing of sshformat credentials.
  * pamu2fcfg now allows a combination of the --username and --nouser options.
  * Improved documentation on FIDO2 options.
- add keyring for validation

-------------------------------------------------------------------
Mon Oct 18 20:00:36 UTC 2021 - Torsten Gruner <[email protected]>

- Define macro _pam_moduledir if not set to fix builds for Leap and SLE

-------------------------------------------------------------------
Wed Oct 13 08:05:40 UTC 2021 - Paolo Perego <[email protected]>

- Update to version 1.2.0 (released 2021-09-22)
  * Added support for EdDSA keys.
  * Added support for SSH ed25519-sk keys.
  * Added authenticator filtering based on user verification options.
  * Fixed an issue with privilege restoration on MacOS.
  * Fixed an issue where credentials created with pamu2fcfg 1.0.8 or earlier were not handled correctly if their origin and appid differed.
  * Miscellaneous improvements to the documentation.
  * Miscellaneous minor bug fixes found by fuzzing.

- Fix for bsc#1190961 - Removed hardcoded library pathnames using %{_pam_moduledir}

-------------------------------------------------------------------
Thu May 20 13:04:05 UTC 2021 - Torsten Gruner <[email protected]>

- Update to version 1.1.1 (released 2021-05-19)
  * Fix an issue where PIN authentication could be bypassed (CVE-2021-31924).
  * Fix an issue with nodetect and non-resident credentials.
  * Fix build issues with musl libc.
  * Add support for self-attestation in pamu2fcfg.
  * Fix minor bugs found by fuzzing.

-------------------------------------------------------------------
Thu Oct 15 17:59:59 UTC 2020 - Ismail Dönmez <[email protected]>

- Update to version 1.1.0
  * Add support to FIDO2 (move from libu2f-host+libu2f-server to libfido2)
  * Add support to User Verification
  * Add support to PIN Verification
  * Add support to Resident Credentials
  * Add support to SSH credential format
- Drop libu2f-host and libu2f-server BuildRequires
- Add BuildRequires on pkgconfig(libfido2)
- Add explicit BuildRequires on pkgconfig(libcrypto), this was being
  pulled down implicitly before.

-------------------------------------------------------------------
Tue Jun  4 13:19:36 UTC 2019 - Karol Babioch <[email protected]>

- Version 1.0.8 (released 2019-06-04)
  * Fix insecure debug file handling CVE-2019-12209 (bsc#1135729).
  * Fix debug file descriptor leak CVE-2019-12210 (bsc#1135727).
  * Fix a non-critical buffer oob access.
- Applied spec-cleaner

-------------------------------------------------------------------
Tue May 15 09:04:06 UTC 2018 - [email protected]

- Update to version 1.0.7:
  - Add authpending_file to signal authentication activity
  - Add nodetect to skip to avoid unnecessary cue messages

-------------------------------------------------------------------
Wed Apr 18 11:47:00 UTC 2018 - [email protected]

- Update to version 1.0.6:
  - Fix an issue when using syslog as a debug facility.
  - Do not honor cue if no sutable device is found. 

-------------------------------------------------------------------
Wed Apr 18 07:54:00 UTC 2018 - [email protected]

- Update descriptions, trim bias and other-OS stuff.
- Remove extraneous --bindir.

-------------------------------------------------------------------
Tue Apr 17 06:59:04 UTC 2018 - [email protected]

- Update to version 1.0.5:
  - General bugfixes and quality-of-life improvements. 

-------------------------------------------------------------------
Thu Jan  7 21:34:49 UTC 2016 - [email protected]

- Version 1.0.4 (released 2016-01-07)
  - Fixed possible permission escalation when using XDG_CONFIG_HOME.

-------------------------------------------------------------------
Fri Nov  6 22:00:05 UTC 2015 - [email protected]

- Version 1.0.3 (released 2015-11-02)
  - Bugfix in pamu2fcfg.
  - Minor improvements for verbose mode in pamu2fcfg. 

-------------------------------------------------------------------
Tue Oct  6 14:11:20 UTC 2015 - [email protected]

- Version 1.0.2 (released 2015-10-06)
  - Changes to automake flags.
  - Improve build on OS X.
- Cleanup .spec file
- Add baselib.conf

-------------------------------------------------------------------
Wed Jul  8 21:23:52 UTC 2015 - [email protected]

- Version 1.0.1 (released 2015-06-18)
  - Minor changes to man pages and install hooks.
- Version 1.0.0 (released 2015-06-17)
  - Use XDG_CONFIG_HOME as default for config files.
  - Added manual and interactive mode.
  - Added verbose mode.

-------------------------------------------------------------------
Wed Jan 21 15:05:38 UTC 2015 - [email protected]

- Version 0.0.1 (released 2015-01-16)
  - Changed failure mode after authentication error.
  - Added call to setcred.

-------------------------------------------------------------------
Tue Jan 13 07:45:00 UTC 2015 - [email protected]

- Version 0.0.0

2014-12-16  Alessio Di Mauro <[email protected]>

	* Makefile.am: More fix to Makefile.am.

2014-12-16  Alessio Di Mauro <[email protected]>

	* NEWS: Updated NEWS.

2014-12-16  Alessio Di Mauro <[email protected]>

	* Makefile.am, pamu2fcfg/Makefile.am: Cleaned release target.

2014-12-16  Alessio Di Mauro <[email protected]>

	* Makefile.am: Changed repo variable name.

2014-12-16  Alessio Di Mauro <[email protected]>

	* pam-u2f.c, util.c: Indent.

2014-12-16  Alessio Di Mauro <[email protected]>

	* README: Fixed link in AsciiDoc.

2014-12-15  Alessio Di Mauro <[email protected]>

	* .travis.yml: Added more asciidoc related packets to Travis build.

2014-12-15  Alessio Di Mauro <[email protected]>

	* build-aux/travis: Added more ldconfig.

2014-12-15  Alessio Di Mauro <[email protected]>

	* .travis.yml: Added check to Travis build.

2014-12-15  Alessio Di Mauro <[email protected]>

	* build-aux/travis: Permissions.

2014-12-15  Alessio Di Mauro <[email protected]>

	* .travis.yml: Removed libhidapi from Travis build.

2014-12-15  Alessio Di Mauro <[email protected]>

	* .travis.yml, build-aux/travis: Added travis build.

2014-12-15  Alessio Di Mauro <[email protected]>

	* Makefile.am, pamu2fcfg/Makefile.am: Fixed Makefile.

2014-12-12  Alessio Di Mauro <[email protected]>

	* configure.ac: Fixed typo in configure.ac.

2014-12-12  Alessio Di Mauro <[email protected]>

	* README: Updated README.

2014-12-12  Alessio Di Mauro <[email protected]>

	* pamu2fcfg/pamu2fcfg.c: Removed linebreak at the end of the final
	printout.

2014-12-12  Alessio Di Mauro <[email protected]>

	* .gitignore, pamu2fcfg/cmdline.c, pamu2fcfg/cmdline.ggo,
	pamu2fcfg/cmdline.h, pamu2fcfg/pamu2fcfg.1.txt,
	pamu2fcfg/pamu2fcfg.c: Added man page.

2014-12-12  Alessio Di Mauro <[email protected]>

	* pamu2fcfg/pamu2fcfg.c: Improved timout presentation.

2014-12-12  Alessio Di Mauro <[email protected]>

	* Makefile.am, pamu2fcfg/cmdline.c, pamu2fcfg/cmdline.h,
	pamu2fcfg/pamu2fcfg.c: Indent.

2014-12-12  Alessio Di Mauro <[email protected]>

	* .gitignore, Makefile.am, configure.ac, pamu2fcfg/Makefile.am,
	pamu2fcfg/cmdline.c, pamu2fcfg/cmdline.ggo, pamu2fcfg/cmdline.h,
	pamu2fcfg/pamu2fcfg.c: Added first version of the registration tool.

2014-12-12  Alessio Di Mauro <[email protected]>

	* pam-u2f.c, util.c: Fixed some warnings.

2014-12-12  Alessio Di Mauro <[email protected]>

	* README, pam-u2f.c, pam_u2f.8.txt, util.h: Changed default origin
	and appid to pam://$HOSTNAME.

2014-12-10  Alessio Di Mauro <[email protected]>

	* README: Typo in README.

2014-12-10  Alessio Di Mauro <[email protected]>

	* .gitignore, AUTHORS, BLURB, COPYING, Makefile.am, NEWS, README,
	README.adoc, README.md, configure.ac, m4/lib-ld.m4, m4/lib-link.m4,
	m4/lib-prefix.m4, m4/manywarnings.m4, m4/warnings.m4, pam-u2f.c,
	pam_u2f.8.txt, tests/Makefile.am, tests/basic.c, util.c, util.h: 
	Added initial content.

2014-12-10  Alessio Di Mauro <[email protected]>

	* Initial commit
openSUSE Build Service is sponsored by
Places
OSZAR »