COMMAND

    PAM

SYSTEMS AFFECTED

    Red Hat Linux 6.1 for i386

PROBLEM

    Following  is  based  on  Red  Hat  Security Advisory.  Under some
    network  configurations  PAM  (Pluggable  Authentication  Modules)
    will fail to lock access to disabled NIS accounts.

    The PAM packages  shipped with Red  Hat Linux 6.1/Intel  may allow
    access to locked NIS  accounts on certain network  configurations.
    If  you  have   a  Red  Hat   Linux  6.1  workstation   performing
    authentication against a NIS server then you are at risk.  Red Hat
    recommends that you upgrade the PAM packages on all Red Hat  Linux
    6.1 workstations to the versions announced in this advisory.

SOLUTION

    Previous  versions  of  Red  Hat  Linux  are  not affected by this
    problem.  RPMs required:

        ftp://updates.redhat.com/6.1/i386/pam-0.68-8.i386.rpm
        ftp://updates.redhat.com/6.1/SRPMS/pam-0.68-8.src.rpm