- add patches from fedora to fix CVE-2013-7041 and CVE-2014-2583 - update pam-redhat tarball to 0.99.11 (from fedora) - rename 90-nproc.conf to 20-nproc.conf (from fedora) - remove patches 7 and 11 (from fedora)