Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libpskc0-2.6.11.12-2.1 RPM for riscv64

From OpenSuSE Ports Tumbleweed for riscv64

Name: libpskc0 Distribution: openSUSE Tumbleweed
Version: 2.6.11.12 Vendor: openSUSE
Release: 2.1 Build date: Wed Oct 16 16:24:27 2024
Group: System/Libraries Build host: reproducible
Size: 74850 Source RPM: oath-toolkit-2.6.11.12-2.1.src.rpm
Packager: https://bugs.opensuse.org
Url: https://www.nongnu.org/oath-toolkit/
Summary: Library for Portable Symmetric Key Container
The OATH Toolkit makes it possible to build one-time password
authentication systems.

For managing secret key files, the Portable Symmetric Key Container
(PSKC) format described in RFC6030 is supported.

Provides

Requires

License

LGPL-2.1-or-later

Changelog

* Wed Oct 16 2024 Jan Zerebecki <jan.suse@zerebecki.de>
  - Update 0001-usersfile-fix-potential-security-issues-in-PAM-modul.patch
    with bsc#1231699 improvements for security fix CVE-2024-47191
* Fri Sep 13 2024 Jan Zerebecki <jan.suse@zerebecki.de>
  - Fix security issue CVE-2024-47191 by adding
    0001-usersfile-fix-potential-security-issues-in-PAM-modul.patch .
  - Add patch to implement new null_usersfile_okay argument
    42-null_usersfile_okay.patch .
  - Makes this version 2.6.11.12 to be able to depend on it.
* Wed Apr 03 2024 pgajdos@suse.com
  - version update to 2.6.11
    * liboath: Handle invalid base32 encoded secrets.  Fixes: #41.
    * Various build fixes including updated gnulib files.
    * Improve compatibility with recent libxmlsec.
* Sun Jul 09 2023 Martin Hauke <mardnh@gmx.de>
  - Update to version 2.6.8
    * libpskc: Fixes for recent libxmlsec releases.
    * pam_oath: Provide fallback pam_modutil_getpwnam implementation.
    * pam_oath: Don't fail authentication when pam_modutil_getpwnam
    doesn't ** know the user when usersfile don't include ${USER}
    or ${HOME}.
    * pam_oath: Self-test improvements.
* Tue Aug 02 2022 Torsten Gruner <simmphonie@opensuse.org>
  - Use %_pam_moduledir instead of hardcoding %{_lib}/security
  - Define macro _pam_moduledir if not set to fix builds for Leap and SLE
* Thu Apr 21 2022 Marcus Meissner <meissner@suse.com>
  - url -> https
* Sun May 02 2021 Martin Hauke <mardnh@gmx.de>
  - Update to version 2.6.7
    * pam_oath: Support variables in usersfile string parameter.
      These changes introduce the ${USER} and ${HOME} placeholder
      values for the usersfile string in the pam_oath configuration
      file. The placeholder values allow the user credentials file
      to be stored in a file path that is relative to the user, and
      mimics similar behavior found in google-authenticator-libpam.
      The motivation for these changes is to allow for
      non-privileged processes to use pam_oath (e.g., for 2FA with
      xscreensaver). Non-privileged and non-suid programs are
      unable to use pam_oath. These changes are a proposed
      alternative to a suid helper binary as well.
    * doc: Fix project URL in man pages.
    * build: Drop use of libxml's AM_PATH_XML2 in favor of pkg-config.
    * build: Modernize autotools usage.
      Most importantly, no longer use -Werror with AM_INIT_AUTOMAKE
      to make rebuilding from source more safe with future automake
      versions.
    * Updated gnulib files.
* Wed Jan 20 2021 Martin Hauke <mardnh@gmx.de>
  - Update to version 2.6.6
    * oathtool: Support for reading KEY and OTP from standard input
      or filename.  KEY and OTP may now be given as '-' to mean
      stdin, or @FILE to read from a particular file.  This is
      recommended on multi-user systems, since secrets as command
      line parameters leak.
    * pam_oath: Fix unlikely logic fail on out of memory conditions.
* Tue Dec 29 2020 Martin Hauke <mardnh@gmx.de>
  - Update to version 2.6.5
    * oathtool: Support for reading KEY and OTP from standard input
      or filename.
      KEY and OTP may now be given as '-' to mean stdin, or @FILE to
      read from a particular file.  This is recommended on multi-user
      systems, since secrets as command line parameters leak.
    * pam_oath: Fix unlikely logic fail on out of memory conditions.
    * Doc fixes.
  - Update to version 2.6.4
    * libpskc: New --with-xmlsec-crypto-engine to hard-code crypto
      engine.  Use it like --with-xmlsec-crypto-engine=gnutls or
    - -with-xmlsec-crypto-engine=openssl if the default dynamic
      loading fails because of runtime linker search path issues.
    * oathtool --totp --verbose now prints TOTP hash mode.
    * oathtool: Hash names (e.g., SHA256) for --totp are now upper
      case.  Lower/mixed case hash names are supported for
      compatibility.
    * pam_oath: Fail gracefully for missing users.
      This allows you to incrementally add support for OATH
      authentication instead of forcing it on all users.
    * Fix libpskc memory corruption bug.
    * Fix man pages.
    * Build fixes.
  - Update to version 2.6.3
    * pam_oath: Fix self-tests.
  - Drop not longer needed patches:
    * 0001-Fix-no-return-in-nonvoid-function-errors-reported-by.patch
    * 0003-pam_oath-assign-safe-default-to-alwaysok-config-memb.patch
    * 0002-update_gnulibs_files.patch
    * gnulib-libio.patch
  - Use source verification
  - Use proper source URLs
* Mon Aug 06 2018 schwab@suse.de
  - gnulib-libio.patch: Update gnulib for libio.h removal

Files

/usr/lib64/libpskc.so.0
/usr/lib64/libpskc.so.0.0.1
/usr/share/doc/packages/libpskc0
/usr/share/doc/packages/libpskc0/README
/usr/share/licenses/libpskc0
/usr/share/licenses/libpskc0/COPYING


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 19 01:14:14 2024