In OpenSC pam_pkcs11 before 0.6.13, pam_sm_authenticate() wrongly returns PAM_IGNORE in many error situations (such as an error triggered by a smartcard before login), allowing authentication bypass.Referenceshttps://github.com/OpenSC/pam_pkcs11/security/advisories/GHSA-7mf6-rg36-qgchhttps://github.com/OpenSC/pam_pkcs11/releaseshttps://www.openwall.com/lists/oss-security/2025/02/06/3
