CVE-2019-16729 (https://nvd.nist.gov/vuln/detail/CVE-2019-16729): pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups.
pkg removed from tree