Description: Red Hat has issued an update for pam. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions.
Note: The way pam_console handled permissions of these files has been modified to disallow access. This change also required modifications to the cdrecord application.
Solution: Updated packages are available from Red Hat Network. http://rhn.redhat.com
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.