CLSA-2025:1753207513

[CLSA-2025:1753207513] pam: Fix of CVE-2025-6020

Type:

security

Severity:

Important

Release date:

2025-07-22 18:05:17 UTC

Description:

- CVE-2025-6020: privilege elevation to root via multiple symlink attacks
  and race conditions
- Perform regression testing

Updated packages:

pam-1.3.1-15.el8.tuxcare.els2.i686.rpm
sha:febce00810cd9008e9a519d9ea2e71850e12cb567060ca73a1e284408a19efac
pam-1.3.1-15.el8.tuxcare.els2.x86_64.rpm
sha:246dfd291a8ae47657d3ef58f9a3653f137045c47234934d0365072e0ade4bb5
pam-devel-1.3.1-15.el8.tuxcare.els2.i686.rpm
sha:6f2a1657f3229ac1fb1f6615af561417dce35bf6478536a44f992e92afb5570a
pam-devel-1.3.1-15.el8.tuxcare.els2.x86_64.rpm
sha:fc9b485456670a4ab59ccaa988ece5a85c0b9d002b3b78fe30348b8fb9499d80

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.