get files ready for 0.8.1 release

git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1385 ef36b2f9-881f-0410-afb5-c4e39611909c
author: Arthur de Jong <arthur@arthurdejong.org> 2011-03-10 21:45:14 +0000
committer: Arthur de Jong <arthur@arthurdejong.org> 2011-03-10 21:45:14 +0000
commit: 7bd6de3921993855d280a42e8e5e81f7e2360ba3 (patch)
tree: 5b831004753d3913ccbd574f10c2c6bdce2332f2 /NEWS
parent: b7b283dc8db16ecabb42d0792e8e7f06e3eeced8 (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index eb79260..71ad535 100644
--- a/NEWS
+++ b/NEWS
@@ -1,3 +1,21 @@
+changes from 0.8.0 to 0.8.1
+---------------------------
+
+* SECURITY FIX: the PAM module will allow authentication for users that do not
+                exist in LDAP, this allows login to local users with an
+                incorrect password (CVE-2011-0438)
+                the explotability of the problem depends on the details of the
+                PAM stack and the use of the minimum_uid PAM option
+* include a file that was missing for Solaris support
+* add FreeBSD support, partially imported from the FreeBSD port (thanks to
+  Jacques Vidrine, Artem Kazakov and Alexander V. Chernikov)
+* document how to replace name pam_check_service_attr and pam_check_host_attr
+  options in PADL's pam_ldap with with pam_authz_search in nss-pam-ldapd
+* implement a fqdn variable that can be used in pam_authz_search filters
+* create the directory to hold the socket and pidfile on startup
+* implement host, network and netgroup support in pynslcd
+
+
 changes from 0.7.13 to 0.8.0
 ----------------------------
author	Arthur de Jong <arthur@arthurdejong.org>	2011-03-10 21:45:14 +0000
committer	Arthur de Jong <arthur@arthurdejong.org>	2011-03-10 21:45:14 +0000
commit	7bd6de3921993855d280a42e8e5e81f7e2360ba3 (patch)
tree	5b831004753d3913ccbd574f10c2c6bdce2332f2 /NEWS
parent	b7b283dc8db16ecabb42d0792e8e7f06e3eeced8 (diff)