-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 10 Feb 2025 21:06:21 +0100
Source: pam-pkcs11
Binary: libpam-pkcs11 libpam-pkcs11-dbgsym
Architecture: armel
Version: 0.6.12-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-04) <buildd_arm64-arm-ubc-04@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 libpam-pkcs11 - Fully featured PAM module for using PKCS#11 smart cards
Closes: 1095402
Changes:
 pam-pkcs11 (0.6.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fixed possible authentication bypass: Don't return PAM_IGNORE
     (CVE-2025-24531) (Closes: #1095402)
   * fixed possible authentication bypass: Use signatures to verify
     authentication by default (CVE-2025-24032)
   * Update configuration files for the CVE-2025-24032 fix
Checksums-Sha1:
 52861feffde4ba2641453ad122d5747544f4d71c 656556 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_armel.deb
 019e19e6230a12b2640bd04bfd7f52e2ede4f558 125140 libpam-pkcs11_0.6.12-1+deb12u1_armel.deb
 4e2d6ec372b053900c93f867bbb478b8be58b794 6828 pam-pkcs11_0.6.12-1+deb12u1_armel-buildd.buildinfo
Checksums-Sha256:
 cbc8f3350c8c6a698765535f0dd72ce0824c4b40d4e305873a6c13afdf3b4f17 656556 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_armel.deb
 a323a07248c1237a5d3fd20c76670e6fd4e932fb1506f5568b25ea80b3a0ec66 125140 libpam-pkcs11_0.6.12-1+deb12u1_armel.deb
 16fdcda8583913a5ac45228f0c38ba84a30fbee0a8c167a4beda25eeebabcf94 6828 pam-pkcs11_0.6.12-1+deb12u1_armel-buildd.buildinfo
Files:
 891618c63a44e0ee61dd5173815261c4 656556 debug optional libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_armel.deb
 de4b8d9b26146cfc381bb4da4e6ecefd 125140 admin optional libpam-pkcs11_0.6.12-1+deb12u1_armel.deb
 460dc346d2cde90a71eb1222ccd4872f 6828 admin optional pam-pkcs11_0.6.12-1+deb12u1_armel-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=N5tU
-----END PGP SIGNATURE-----