VYPR

rpm package

suse/pam_pkcs11&distro=SUSE Linux Micro 6.1

pkg:rpm/suse/pam_pkcs11&distro=SUSE%20Linux%20Micro%206.1

Vulnerabilities (2)

  • CVE-2025-24531MedJan 16, 2026
    affected < 0.6.12-slfo.1.1_3.1fixed 0.6.12-slfo.1.1_3.1

    In OpenSC pam_pkcs11 before 0.6.13, pam_sm_authenticate() wrongly returns PAM_IGNORE in many error situations (such as an error triggered by a smartcard before login), allowing authentication bypass.

  • CVE-2025-6018Jul 23, 2025
    affected < 0.6.12-slfo.1.1_4.1fixed 0.6.12-slfo.1.1_4.1

    A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM). This flaw allows an unprivileged local attacker (for example, a user logged in via SSH) to obtain the elevated privileges normally reserved for