-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 10 Feb 2025 21:06:21 +0100
Source: pam-pkcs11
Binary: libpam-pkcs11 libpam-pkcs11-dbgsym
Architecture: arm64
Version: 0.6.12-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-04) <buildd_arm64-arm-conova-04@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 libpam-pkcs11 - Fully featured PAM module for using PKCS#11 smart cards
Closes: 1095402
Changes:
 pam-pkcs11 (0.6.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fixed possible authentication bypass: Don't return PAM_IGNORE
     (CVE-2025-24531) (Closes: #1095402)
   * fixed possible authentication bypass: Use signatures to verify
     authentication by default (CVE-2025-24032)
   * Update configuration files for the CVE-2025-24032 fix
Checksums-Sha1:
 a3521fa1906bd31372ae38541dd28419403f3be4 757056 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_arm64.deb
 15b085933de5e61d3eddd02cbe83be023091541d 144364 libpam-pkcs11_0.6.12-1+deb12u1_arm64.deb
 8621d03bea45f1f0702d1be703447501c32542d4 6954 pam-pkcs11_0.6.12-1+deb12u1_arm64-buildd.buildinfo
Checksums-Sha256:
 db6628e76b594557b51fc6b27eca4dac41719d4a0ce74aa23ffbfe536b514f44 757056 libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_arm64.deb
 616c340de029b9116bd122f22b4cd914dbe37c842ea96c2a971c5bd56669255f 144364 libpam-pkcs11_0.6.12-1+deb12u1_arm64.deb
 d0cec33a7227873429cda95b65b5ed8023ea9d81195711b22ed3b39bd9ae1638 6954 pam-pkcs11_0.6.12-1+deb12u1_arm64-buildd.buildinfo
Files:
 fab2aac89954c094c48e441c755eb7bc 757056 debug optional libpam-pkcs11-dbgsym_0.6.12-1+deb12u1_arm64.deb
 a5aa85a543a0f7b1f94952ed1f0eb7d5 144364 admin optional libpam-pkcs11_0.6.12-1+deb12u1_arm64.deb
 07a8a81b16d38d00a402bdea3b33f1d1 6954 admin optional pam-pkcs11_0.6.12-1+deb12u1_arm64-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEvEwFZ4bqkVI+Rh6t+N4VxR6LZYEFAmeqZhIACgkQ+N4VxR6L
ZYFy4g//QZciixqQKkmiC3eN1+DlkjC9T0dMseB8QheJeS0Ad1y6rr/3LmvpP6fJ
wU2Xrw2s/eTbT+nX6kcBwRJER/iO5d041DJAVZ/4wVz0xcUhx7LMm2lyZxk6pcY/
wSEu+Xnvdv/PBItMw+Wv6pYFT1XdtlqCddkuCZ066Zn6M9AbzAqnWmSQ3t0C6dQy
WixFAJSgWdxV/cTwlw0wS56QhZ6Jkdw+IXabdePwrk3dgk0VQOBlhBWNdL3fLWqg
BXzWBsgkuIT6noNEpbDVP3n8fLL65Wzv3fqf5oD35TUjBC5qdpjJ20XgXxZ699rx
9h5NI05+5r27jnoIQOjs/Hq2UAFtK6gpHtA74SgveDev4NL2Vy2rQjfvOi40RvTG
wkrJ/R1K0/JN73yFUPoy6VSHU7IdoKU2pkwmuNQwMesP8oPGoSj5VB66uc+pguVT
MdkbiFJdVrxE9nnm55SnC8Hj+MR57TzKYZfraROwbQ6mB564DhfkSSQK3FKxk0ht
Ay7aztnPtuwIT3HM8bPLcoD+aRm4LtLbkX16vI4xdmXB8e093Cquind6+6yRBPUB
7DUUi7AUNuZLxS5/bnTBJSWPu5YYncjlTw/zpcSNkCAkENvrsV2s3SbgkRRbso9U
d5wn11dTHVnRX7U9joAeJd5Xlo1+SGQvNSqJHna8TZKIlI6Vh98=
=tVk7
-----END PGP SIGNATURE-----