Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

pam_pkcs11-0.6.12-4.2 RPM for riscv64

From OpenSuSE Ports Tumbleweed for riscv64

Name: pam_pkcs11 Distribution: openSUSE Tumbleweed
Version: 0.6.12 Vendor: openSUSE
Release: 4.2 Build date: Sun Sep 17 11:35:36 2023
Group: Productivity/Security Build host: i02-ch1c
Size: 1158337 Source RPM: pam_pkcs11-0.6.12-4.2.src.rpm
Summary: PKCS #11 PAM Module
This Linux PAM module allows X.509 a certificate-based user
authentication. The certificate and its dedicated private key are
thereby accessed by means of an appropriate PKCS #11 module. For the
verification of the users' certificates, locally stored CA certificates
as well as online or locally accessible CRLs are used.

Additionally, the package includes pam_pkcs11-related tools:

* pkcs11_eventmgr: Generates actions on card insert, removal, or
  time-out events

* pklogin_finder: Gets the login name that maps to a certificate

* pkcs11_inspect: Inspects the contents of a certificate

* make_hash_links: Creates hash link directories for storing CAs and






* Mon Jan 16 2023 Stefan Schubert <>
  - Migration of PAM settings to /usr/lib/pam.d.
* Fri Jul 29 2022
  -  use pam rpm macros [bsc#1190957]
* Sat Jan 15 2022 Andreas Stieger <>
  - update to 0.6.12:
    * Limit signature length to 65536 bytes
    * A number of bug fixes and OpenSSL compatibility updates
    * console output color updates
    * Add support of ECDSA signature in addition to RSA
* Thu Oct 14 2021 Johannes Segitz <>
  - Added hardening to systemd service(s) (bsc#1181400). Modified:
    * pkcs11_eventmgr.service
* Tue Jan 29 2019
  - Update to version 0.6.10:
    * Fix some security issues (thx @frankmorgner):
      (drop 0001-verify-using-a-nonce-from-the-system-not-the-card.patch,
    * Fix buffer overflow with long home directory.
    * Fix wiping secrets (now using OpenSSL_cleanse()).
    * Verify using a nonce from the system, not the card.
    * Fix segfalt when checking CRLs
      (drop pam_pkcs11-crl-check.patch).
  - Add rcpkcs11_eventmgr service symlink.
* Fri Aug 17 2018
  - Address security issues found by X41 D-Sec audit (bsc#1105012)
    * Authentication Replay
    * Buffer Overflow
    * Memory not cleaned properly before free()
  - add patches:
    * 0001-verify-using-a-nonce-from-the-system-not-the-card.patch
    * 0002-fixed-buffer-overflow-with-long-home-directory.patch
    * 0003-fixed-wiping-secrets-with-OpenSSL_cleanse.patch
* Mon Jul 23 2018
  - Fix segfault and fetch problems when checking CRLs
* Sun Sep 10 2017
  - Repair bulletpoint that skidded in description.
    Trim description of %name-devel-doc, it does not cotain
    the programs.
* Wed Aug 09 2017
  - add service file bsc#1049219
* Thu Jul 20 2017
  - Updated to version 0.6.9:
    * Upstream web moved.
    * pkcs11_listcerts: Do not fail on certificate error.
    * Do not fail if card was already unlocked.
    * Other bug fixes.
    * Translation updates.
  - Drop upstreamed pam_pkcs11-0.6.8-fix-crypto-cflags.patch.
  - Work around incorrect upstream release process not calling
    "make dist".
  - Split API documentation into a separate package
  - Add pam_pkcs11-fsf-address.patch.



Generated by rpm2html 1.8.1

Fabrice Bellet, Sun Feb 18 00:09:49 2024