Download
| Alert*
oval:org.secpod.oval:def:89045136
This update for cracklib fixes a security issue and a bug: Security issue fixed: - Add patch to fix a stack buffer overflow in GECOS parser The following non security issue was fixed: - Call textdomain in cracklib-check main function so that program output is translated accordingly oval:org.secpod.oval:def:111707 CrackLib tests passwords to determine whether they match certain security-oriented characteristics, with the purpose of stopping users from choosing passwords that are easy to guess. CrackLib performs several tests on passwords: it tries to generate words from a username and gecos entry and checks t ... oval:org.secpod.oval:def:111712 CrackLib tests passwords to determine whether they match certain security-oriented characteristics, with the purpose of stopping users from choosing passwords that are easy to guess. CrackLib performs several tests on passwords: it tries to generate words from a username and gecos entry and checks t ... oval:org.secpod.oval:def:1900540 Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service or gain privileges via a long GECOS field, involving longbuffer. |