2 matches found
Scientific Linux Security Update : pam_krb5 on SL5.x i386/x86_64
A flaw was found in pamkrb5. In some non-default configurations specifically, those where pamkrb5 would be the first module to prompt for a password, the text of the password prompt varied based on whether or not the username provided was a username known to the system. A remote attacker could us...
Scientific Linux Security Update : pam_krb5 on SL3.x i386/x86_64
These updated pam-krb5 packages fix a bug which caused user authentication to fail under certain circumstances. When authenticating a user, if the user's password was expired, the module would attempt to obtain password-changing credentials in order to verify the user's password. When the module...