Issued:: 2025-09-03
Updated:: 2025-09-03

RHSA-2025:15107 - Security Advisory

Overview
Updated Packages

Synopsis

Important: pam security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for pam is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Pluggable Authentication Modules (PAM) provide a system to set up authentication policies without the need to recompile programs to handle authentication.

Security Fix(es):

linux-pam: Incomplete fix for CVE-2025-6020 (CVE-2025-8941)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Fixes

BZ - 2388220 - CVE-2025-8941 linux-pam: Incomplete fix for CVE-2025-6020

CVEs

CVE-2025-8941

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 8.2

SRPM
pam-1.3.1-8.el8_2.2.src.rpm	SHA-256: c5ab7685b1342b072b34867231649ba26822a6b63a0eb923797b14890caf03a1
x86_64
pam-1.3.1-8.el8_2.2.i686.rpm	SHA-256: bf5e8535e944e538949e0bb6eadb8a7a9214321fe788e0455c4b35276b6b997d
pam-1.3.1-8.el8_2.2.x86_64.rpm	SHA-256: 61747d82cf1b5846c22256be8b6d56cf85b87415ce661828ddad1d57bbd90644
pam-debuginfo-1.3.1-8.el8_2.2.i686.rpm	SHA-256: 56d65dfcd20eabe352e694b7f6899d486d8d7bb89f0f6379bc3cde5a61576e2d
pam-debuginfo-1.3.1-8.el8_2.2.x86_64.rpm	SHA-256: c26ecbd4f2f135089095634809d32391fefcba54a44869a78ea7c3828d8d87aa
pam-debugsource-1.3.1-8.el8_2.2.i686.rpm	SHA-256: 7db3dd5b7326d69c11a78e2e41ff59be858242cb9e0bba52b38b54ac37660588
pam-debugsource-1.3.1-8.el8_2.2.x86_64.rpm	SHA-256: b889949db5404610b9c36656b5afb42bd40dc5ac46849da6cd215eb95f4c8ba4
pam-devel-1.3.1-8.el8_2.2.i686.rpm	SHA-256: 4860f57f81c1ce34887c4b5d036f2464fd89431048abc46beeac846adbaf458f
pam-devel-1.3.1-8.el8_2.2.x86_64.rpm	SHA-256: ded080987093b92496468bf6030c47f088378a27984cfad31d9fb12eb204847e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation