oval:org.mitre.oval:def:25284
| Definition Id: oval:org.mitre.oval:def:25284 | |||
| Oval ID: | oval:org.mitre.oval:def:25284 | ||
| Title: | SUSE-SU-2014:0631-1 -- Security update for pam | ||
| Description: | This update changes the broken default behavior of pam_pwhistory to not enforce checks when the root user requests password changes. In order to enforce pwhistory checks on the root user, the "enforce_for_root" parameter needs to be set for the pam_pwhistory.so module. This pam update fixes the following security and non-security issues: * bnc#870433: Fixed pam_timestamp path injection problem (CVE-2014-2583) * bnc#848417: Fixed pam_pwhistory root password enforcement when resetting non-root user's password | ||
| Family: | unix | Class: | patch |
| Reference(s): | SUSE-SU-2014:0631-1 CVE-2014-2583 | Version: | 3 |
| Platform(s): | SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Desktop 11 | Product(s): | pam |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:17270 | |||
| Oval ID: | oval:org.mitre.oval:def:17270 | ||
| Title: | SUSE Linux Enterprise Server 11.x is installed | ||
| Description: | SUSE Linux Enterprise Server 11.x is installed. | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:novell:suse_linux:11::server | Version: | 5 |
| Platform(s): | SUSE Linux Enterprise Server 11 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:25284 | |||
| Definition Id: oval:org.mitre.oval:def:25140 | |||
| Oval ID: | oval:org.mitre.oval:def:25140 | ||
| Title: | SUSE Linux Enterprise Desktop 11.x is installed | ||
| Description: | SUSE Linux Enterprise Desktop 11.x is installed. | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:suse:suse_linux:11::desktop | Version: | 3 |
| Platform(s): | SUSE Linux Enterprise Desktop 11 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:25284 | |||
