-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 10 Feb 2025 21:06:21 +0100
Source: pam-pkcs11
Binary: libpam-pkcs11 libpam-pkcs11-dbgsym
Architecture: i386
Version: 0.6.12-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) <buildd_amd64-x86-ubc-02@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 libpam-pkcs11 - Fully featured PAM module for using PKCS#11 smart cards
Closes: 1095402
Changes:
 pam-pkcs11 (0.6.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fixed possible authentication bypass: Don't return PAM_IGNORE
     (CVE-2025-24531) (Closes: #1095402)
   * fixed possible authentication bypass: Use signatures to verify
     authentication by default (CVE-2025-24032)
   * Update configuration files for the CVE-2025-24032 fix
Checksums-Sha1:
 12b4d5908ceb6c4bb5e85df5e8148e3b792f0ca1 628288 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_i386.deb
 a25ecc1fdffaaf6d13a9d429f1879d62800ae280 154980 libpam-pkcs11_0.6.12-1+deb12u1_i386.deb
 e40aedaf2f84bd3543160a68baea4673054c8c4f 6895 pam-pkcs11_0.6.12-1+deb12u1_i386-buildd.buildinfo
Checksums-Sha256:
 ed1ac4968b2249c28703c9ed552242c542bf4e6101aeb928cc1a46d57a1a9ef3 628288 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_i386.deb
 9ca02ce6c2bdbb061edfbc14ceb6df2f7851367b8c769e4da610852378195eef 154980 libpam-pkcs11_0.6.12-1+deb12u1_i386.deb
 07b6681027eb4ea9a7d14c87eeb0ec483b4103dee3846765125365f0c61d1a2c 6895 pam-pkcs11_0.6.12-1+deb12u1_i386-buildd.buildinfo
Files:
 c337ddeee695e14aaba954297dfd4c9f 628288 debug optional libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_i386.deb
 64f34b472e49bcf2fc69392d37ce4395 154980 admin optional libpam-pkcs11_0.6.12-1+deb12u1_i386.deb
 e2fcaf4ae743b098d7116ee5c589014b 6895 admin optional pam-pkcs11_0.6.12-1+deb12u1_i386-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEGBeuno8wiDXCewDuqqLQG5ksqMMFAmeqZdwACgkQqqLQG5ks
qMNLOA/+MwERCtt5VyQ2nP48gvEQedL1vHJl8w9QAcjrueFeRH2r7mt8LtUAZu0c
jQk2BnrDTLkm9dJl7du3JxZOrRPv3PLX7Re8wosvAFVkVRxcWYXsxa3nst7hi4CM
n3sJ6RIfk5O5FUhr2+MwO7XaffyUCJ8AIfWS5xR1Ga01e2kt4yPXctdrKmwSIK20
QxS9GscYN5hhQC7976rQWDyF1M2/6O4eKxYdThLcALLG4rZ9PRUfwwZu4qhtrG1Q
5m/QguWdp9bOpICSfKYwV2Dy6RE+3XJ6F/vu+9CldzHAd9CBn41v4UXkPfF5HwBn
gx5fnjEhhkTEwoEmK7l/QWnBaY24vrZXymATnaKPR0PEyqP7fCRMW1SM/dMgUrTs
D7DXBrtF51Ycj6uODc1Y3J33Ishi7F9vv4QqZZOaj2uV0W52DdM8hyxxvGak4gc/
Zc31EgEYPzJeZMf2F09o6Pq2d6Mra+Bfk5atT0+63Gd01m4WxfbrZVKPum4tLPLt
VdTTKEYqmTuGuB/qohxFL5groXQbZ+ZSlQiKS5yPdDKN721Q35+JPUh36ak70zjD
JAuuR3Vkw7OxI54daIEan+JsZargwGt+L/e4OrJMnLiK1rPG49J0Lm3q94y2/jrV
wUb6AR7h3215E6q2U/ZXMos1lFY72OQJCM9c7aiioD3WRmilwRQ=
=He7q
-----END PGP SIGNATURE-----