7473 moderate openSUSE Leap 42.3 Update This update for shadow fixes several issues. This security issue was fixed: - CVE-2017-12424: The newusers tool could have been forced to manipulate internal data structures in ways unintended by the authors. Malformed input may have lead to crashes (with a buffer overflow or other memory corruption) or other unspecified behaviors (bsc#1052261). These non-security issues were fixed: - bsc#1023895: Fixed man page to not contain invalid options and also prevent warnings when using these options in certain settings - bsc#980486: Reset user in /var/log/tallylog because of the usage of pam_tally2 This update was imported from the SUSE:SLE-12-SP2:Update update project. shadow-4.2.1-10.1.i586.rpm shadow-4.2.1-10.1.src.rpm shadow-debuginfo-4.2.1-10.1.i586.rpm shadow-debugsource-4.2.1-10.1.i586.rpm shadow-4.2.1-10.1.x86_64.rpm shadow-debuginfo-4.2.1-10.1.x86_64.rpm shadow-debugsource-4.2.1-10.1.x86_64.rpm