Red Hat Product Errata RHSA-2010:0891 - Security Advisory
Issued:
2010-11-16
Updated:
2010-11-16

RHSA-2010:0891 - Security Advisory

Synopsis

Moderate: pam security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated pam packages that fix three security issues are now available for
Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Description

Pluggable Authentication Modules (PAM) provide a system whereby
administrators can set up authentication policies without having to
recompile programs that handle authentication.

It was discovered that the pam_namespace module executed the external
script namespace.init with an unchanged environment inherited from an
application calling PAM. In cases where such an environment was untrusted
(for example, when pam_namespace was configured for setuid applications
such as su or sudo), a local, unprivileged user could possibly use this
flaw to escalate their privileges. (CVE-2010-3853)

It was discovered that the pam_env and pam_mail modules used root
privileges while accessing user's files. A local, unprivileged user could
use this flaw to obtain information, from the lines that have the KEY=VALUE
format expected by pam_env, from an arbitrary file. Also, in certain
configurations, a local, unprivileged user using a service for which the
pam_mail module was configured for, could use this flaw to obtain limited
information about files or directories that they do not have access to.
(CVE-2010-3435)

Note: As part of the fix for CVE-2010-3435, this update changes the default
value of pam_env's configuration option user_readenv to 0, causing the
module to not read user's ~/.pam_environment configuration file by default,
as reading it may introduce unexpected changes to the environment of the
service using PAM, or PAM modules consulted after pam_env.

It was discovered that the pam_xauth module did not verify the return
values of the setuid() and setgid() system calls. A local, unprivileged
user could use this flaw to execute the xauth command with root privileges
and make it read an arbitrary input file. (CVE-2010-3316)

Red Hat would like to thank Sebastian Krahmer of the SuSE Security Team for
reporting the CVE-2010-3435 issue.

All pam users should upgrade to these updated packages, which contain
backported patches to correct these issues.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

  • Red Hat Enterprise Linux Server 6 x86_64
  • Red Hat Enterprise Linux Server 6 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
  • Red Hat Enterprise Linux Workstation 6 x86_64
  • Red Hat Enterprise Linux Workstation 6 i386
  • Red Hat Enterprise Linux Desktop 6 x86_64
  • Red Hat Enterprise Linux Desktop 6 i386
  • Red Hat Enterprise Linux for IBM z Systems 6 s390x
  • Red Hat Enterprise Linux for Power, big endian 6 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
  • Red Hat Enterprise Linux Server from RHUI 6 x86_64
  • Red Hat Enterprise Linux Server from RHUI 6 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6 s390x

Fixes

  • BZ - 637898 - CVE-2010-3316 pam: pam_xauth missing return value checks from setuid() and similar calls
  • BZ - 641335 - CVE-2010-3435 pam: pam_env and pam_mail accessing users' file with root privileges
  • BZ - 643043 - CVE-2010-3853 pam: pam_namespace executes namespace.init with service's environment

Red Hat Enterprise Linux Server 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e
i386
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f

Red Hat Enterprise Linux Workstation 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
i386
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e

Red Hat Enterprise Linux Desktop 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e
i386
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
s390x
pam-1.1.1-4.el6_0.1.s390.rpm SHA-256: 024bdd158e03d6c1c9da413061c94838507f990afc2ec8796c5f891fd7219c0d
pam-1.1.1-4.el6_0.1.s390x.rpm SHA-256: 85c66374ed48a8332f1e64a5f8b5dd5621c12d73ec79e6ad02b793bcaa257a1c
pam-debuginfo-1.1.1-4.el6_0.1.s390.rpm SHA-256: b65b62aa0e104b1b4c4901b94590270d41b14daa39162bc28311c7fac8cc79f7
pam-debuginfo-1.1.1-4.el6_0.1.s390x.rpm SHA-256: 3e83c57fb9c255a2f42898016bc399f8977b169f24b7da07d1719669e20eabb9
pam-devel-1.1.1-4.el6_0.1.s390.rpm SHA-256: 36fa8b09cf02bf51aad26d836278173165a0709ead8b79aabd5679a280e64c26
pam-devel-1.1.1-4.el6_0.1.s390x.rpm SHA-256: f9978aa882ac45fa07deb47a7d14e55d2033c0768ab550602117577f37c7ac69

Red Hat Enterprise Linux for Power, big endian 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
ppc64
pam-1.1.1-4.el6_0.1.ppc.rpm SHA-256: 5514c43681416ae7b8c2120d2a7c7f008bc98a226917bc45e2da0c33ae9a059f
pam-1.1.1-4.el6_0.1.ppc64.rpm SHA-256: 33529b40ec34093940c9a7f2ab739eb4d51ee31d08447bd4edf9d8b885943d83
pam-debuginfo-1.1.1-4.el6_0.1.ppc.rpm SHA-256: 0a58b72b61cbea92f94ba478307582f3eba42fac73a6e53fb386778764775ae7
pam-debuginfo-1.1.1-4.el6_0.1.ppc64.rpm SHA-256: cabdf1e6909156fb228b5db30163fda9ecc67128afd562aa5ca284c4405c8f8f
pam-devel-1.1.1-4.el6_0.1.ppc.rpm SHA-256: 956cdb400dca596f4684481651ffbb5f8ffa1869dc94e5fa50dfe07d06e04e8b
pam-devel-1.1.1-4.el6_0.1.ppc64.rpm SHA-256: 3cbda1af13e2b1378eb857a47561ee0820769e66d5ae9fc8e91a450aa30bd5d8

Red Hat Enterprise Linux for Scientific Computing 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e

Red Hat Enterprise Linux Server from RHUI 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e
i386
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f

Red Hat Enterprise Linux Server - Extended Life Cycle Support 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e
i386
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
s390x
pam-1.1.1-4.el6_0.1.s390.rpm SHA-256: 024bdd158e03d6c1c9da413061c94838507f990afc2ec8796c5f891fd7219c0d
pam-1.1.1-4.el6_0.1.s390x.rpm SHA-256: 85c66374ed48a8332f1e64a5f8b5dd5621c12d73ec79e6ad02b793bcaa257a1c
pam-debuginfo-1.1.1-4.el6_0.1.s390.rpm SHA-256: b65b62aa0e104b1b4c4901b94590270d41b14daa39162bc28311c7fac8cc79f7
pam-debuginfo-1.1.1-4.el6_0.1.s390x.rpm SHA-256: 3e83c57fb9c255a2f42898016bc399f8977b169f24b7da07d1719669e20eabb9
pam-devel-1.1.1-4.el6_0.1.s390.rpm SHA-256: 36fa8b09cf02bf51aad26d836278173165a0709ead8b79aabd5679a280e64c26
pam-devel-1.1.1-4.el6_0.1.s390x.rpm SHA-256: f9978aa882ac45fa07deb47a7d14e55d2033c0768ab550602117577f37c7ac69

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
x86_64
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 862a6a8540a77137a50785764703db4610f5e89d22d1651a6fd2436b44394404
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-debuginfo-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: f9a40c68cc75ce992a78cec067c921ab2b1dd72c7e6d2b66a659645d906c30b1
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f
pam-devel-1.1.1-4.el6_0.1.x86_64.rpm SHA-256: 247b00ee128fdc7823f5c0456d0f3c98109d116f862ccee27a35cdd21d2f718e
i386
pam-1.1.1-4.el6_0.1.i686.rpm SHA-256: 9724e44430af9355988e5527bcb7b31e19ec7e9cbcaf5d1628af843786c4157f
pam-debuginfo-1.1.1-4.el6_0.1.i686.rpm SHA-256: afe000fc8da83c0d4bf7f20d984086132c3ddea216a7b11821d9cf33f6e5b666
pam-devel-1.1.1-4.el6_0.1.i686.rpm SHA-256: d96e8bebde1b416d4953e9b3ae438d09f224d89bcc1393746b2ea93044a9cb7f

Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems) 6

SRPM
pam-1.1.1-4.el6_0.1.src.rpm SHA-256: 7fae8ab62ac4a1d69dfb80557c2fd06d83e7a0e572301d79c3de7878cdc3d36c
s390x
pam-1.1.1-4.el6_0.1.s390.rpm SHA-256: 024bdd158e03d6c1c9da413061c94838507f990afc2ec8796c5f891fd7219c0d
pam-1.1.1-4.el6_0.1.s390x.rpm SHA-256: 85c66374ed48a8332f1e64a5f8b5dd5621c12d73ec79e6ad02b793bcaa257a1c
pam-debuginfo-1.1.1-4.el6_0.1.s390.rpm SHA-256: b65b62aa0e104b1b4c4901b94590270d41b14daa39162bc28311c7fac8cc79f7
pam-debuginfo-1.1.1-4.el6_0.1.s390x.rpm SHA-256: 3e83c57fb9c255a2f42898016bc399f8977b169f24b7da07d1719669e20eabb9
pam-devel-1.1.1-4.el6_0.1.s390.rpm SHA-256: 36fa8b09cf02bf51aad26d836278173165a0709ead8b79aabd5679a280e64c26
pam-devel-1.1.1-4.el6_0.1.s390x.rpm SHA-256: f9978aa882ac45fa07deb47a7d14e55d2033c0768ab550602117577f37c7ac69

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.