-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 10 Feb 2025 21:06:21 +0100
Source: pam-pkcs11
Binary: libpam-pkcs11 libpam-pkcs11-dbgsym
Architecture: s390x
Version: 0.6.12-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 libpam-pkcs11 - Fully featured PAM module for using PKCS#11 smart cards
Closes: 1095402
Changes:
 pam-pkcs11 (0.6.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fixed possible authentication bypass: Don't return PAM_IGNORE
     (CVE-2025-24531) (Closes: #1095402)
   * fixed possible authentication bypass: Use signatures to verify
     authentication by default (CVE-2025-24032)
   * Update configuration files for the CVE-2025-24032 fix
Checksums-Sha1:
 314959ea46c31e8945a4d512031b9bc810b68845 670216 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_s390x.deb
 b7c2efe2f12746acd2b07b7206d8cbff64c39eaa 138672 libpam-pkcs11_0.6.12-1+deb12u1_s390x.deb
 c3a9848c1a5abd63f186d0d84ad21fbb04c7be95 6850 pam-pkcs11_0.6.12-1+deb12u1_s390x-buildd.buildinfo
Checksums-Sha256:
 ed90e72f7a7b5b851845661c8d66b2bba3b3291821e9d9771ddf54ee1eb0bb1c 670216 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_s390x.deb
 839a90c0f8295f686e0d745508119e5884e3af8d9ff9defc2db09599d607338b 138672 libpam-pkcs11_0.6.12-1+deb12u1_s390x.deb
 0fc7c8290f173e672ae1ef98b52939e517db97eca0ebeef0f06a1eafd3da5e88 6850 pam-pkcs11_0.6.12-1+deb12u1_s390x-buildd.buildinfo
Files:
 4dfd8f749928c2eef3ca3f21a20852b4 670216 debug optional libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_s390x.deb
 a1bbe4ee39b9277211a05beb9193699e 138672 admin optional libpam-pkcs11_0.6.12-1+deb12u1_s390x.deb
 5c2d34ba992b4199d4b62f576d7d6f6b 6850 admin optional pam-pkcs11_0.6.12-1+deb12u1_s390x-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=OOj/
-----END PGP SIGNATURE-----