kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/security/oath-toolkit
History
pettai 6bad46d81b Version 2.4.1 (released 2014-02-12) 
* liboath: Fix usersfile bug that caused it to update the wrong line.
When an usersfile contain multiple lines for the same user but with an
unparseable token type (e.g., HOTP vs TOTP), the code would update the
wrong line of the file.  Since the then updated line could be a
commented out line, this can lead to the same OTP being accepted
multiple times which is a security vulnerability. CVE-2013-7322
CVs: ----------------------------------------------------------------------
2014-03-10 00:58:51 +00:00
..
patches Version 2.0.2 (released 2013-01-08) 2013-03-16 20:52:38 +00:00
DESCR
distinfo Version 2.4.1 (released 2014-02-12) 2014-03-10 00:58:51 +00:00
Makefile Version 2.4.1 (released 2014-02-12) 2014-03-10 00:58:51 +00:00
PLIST Version 2.4.0 (released 2013-07-21) 2013-09-14 07:46:33 +00:00