Read Time:24 Second

Marcus Rückert and Matthias Gerstner discovered that PAM-PKCS#11 did not
properly handle certain return codes when authentication was not possible.
An attacker could possibly use this issue to bypass authentication. This
issue only affected Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2025-24531)

It was discovered that PAM-PKCS#11 did not require a private key signature
for authentication by default. An attacker could possibly use this issue
to bypass authentication. (CVE-2025-24032)

Read More

More Stories

qgis-3.42.1-2.fc42

FEDORA-2025-f12c63c177 Packages in this update: qgis-3.42.1-2.fc42 Update description: Fix CVE-2024-55565. Update to 3.42.1. Update to qgis-3.42.0 Read More

qgis-3.40.5-2.fc41

FEDORA-2025-ccb6313749 Packages in this update: qgis-3.40.5-2.fc41 Update description: Fix CVE-2024-55565. Update to 3.40.5. Update to 3.40.4. Read More