Stay Connected:

ELSA-2019-3651

ELSA-2019-3651 - sssd security, bug fix, and enhancement update

Type:SECURITY
Severity:LOW
Release Date:2019-11-14

Description


[2.2.0-19]
- Resolves: rhbz#1712875 - Old kerberos credentials active instead of valid
new ones (kcm)

[2.2.0-18]
- Resolves: rhbz#1744134 - New defect found in sssd-2.2.0-16.el8
- Also sync. kcm multihost tests with master

[2.2.0-17]
- Resolves: rhbz#1676385 - pam_sss with smartcard auth does not create gnome
keyring
- Also apply a patch to fix gating tests issue

[2.2.0-16]
- Resolves: rhbz#1736861 - dyndns_update = True is no longer enough to get
the IP address of the machine updated in IPA upon
sssd.service startup

[2.2.0-15]
- Resolves: rhbz#1736265 - Smart Card auth of local user: endless
loop if wrong PIN was provided

[2.2.0-14]
- Resolves: rhbz#1736796 - sssd config option 'default_domain_suffix'
should not cause files domain entries to be
qualified, this can break sudo access

[2.2.0-13]
- Resolves: rhbz#1669407 - MAN: Document that PAM stack contains the
systemd-user service in the account phase in RHEL-8

[2.2.0-12]
- Resolves: rhbz#1448094 - sssd-kcm cannot handle big tickets

[2.2.0-11]
- Resolves: rhbz#1733372 - permission denied on logs when running sssd as
non-root user

[2.2.0-10]
- Resolves: rhbz#1736483 - Sudo prompt for smart card authentication is missing
the trailing colon

[2.2.0-9]
- Resolves: rhbz#1382750 - Conflicting default timeout values

[2.2.0-8]
- Resolves: rhbz#1699480 - Include libsss_nss_idmap-devel in the Builder
repository
- This just required a raise in release number
and changelog for the record.

[2.2.0-7]
- Resolves: rhbz#1711318 - p11_child::sign_data() function implementation is
not FIPS140 compliant

[2.2.0-6]
- Resolves: rhbz#1726945 - negative cache does not use values from
'filter_users' config option for known domains

[2.2.0-5]
- Resolves: rhbz#1729055 - sssd does not pass correct rules to sudo

[2.2.0-4]
- Resolves: rhbz#1283798 - sssd failover does not work on connecting to
non-responsive ldaps:// server

[2.2.0-3]
- Resolves: rhbz#1725168 - sssd-proxy crashes resolving groups with
no members

[2.2.0-2]
- Resolves: rhbz#1673443 - sssd man pages: The default value of
'ldap_user_home_directory' is not mentioned
with AD server configuration

[2.2.0-1]
- Resolves: rhbz#1687281
Rebase sssd in RHEL-8.1 to the latest upstream release

[2.1.0-1]
- Resolves: rhbz#1687281
Rebase sssd in RHEL-8.1 to the latest upstream release

[2.0.0-45]
- Replace ARRAY_SIZE with N_ELEMENTS to reflect samba changes. This is
done here in order to unblock gating changes before rebase.
- Related: rhbz#1682305


Related CVEs


CVE-2018-16838

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) sssd-2.2.0-19.el8.src.rpm1fd34563579283f9af532c13a3bcabab-
libipa_hbac-2.2.0-19.el8.aarch64.rpmbd4bf61bd021ccafba0228b82b71326a-
libsss_autofs-2.2.0-19.el8.aarch64.rpm097ab9523b3392f5b68853ab3ee6f434-
libsss_certmap-2.2.0-19.el8.aarch64.rpm11a8a7a0bb18e2304d5ac22815953408-
libsss_idmap-2.2.0-19.el8.aarch64.rpm23bad4eebdfdbff6becdf552b4578af4-
libsss_nss_idmap-2.2.0-19.el8.aarch64.rpm9e1b1e6a701d0b7b436fc1bd93d19580-
libsss_nss_idmap-devel-2.2.0-19.el8.aarch64.rpm5734008dc7fb33ab75607d5e2ac6fa2c-
libsss_simpleifp-2.2.0-19.el8.aarch64.rpm50010a20931346fe8fde179480f646e7-
libsss_sudo-2.2.0-19.el8.aarch64.rpm3b9b6a17b4c3986270f947260216102f-
python3-libipa_hbac-2.2.0-19.el8.aarch64.rpm5cc06222ae94d1599665099969783ca5-
python3-libsss_nss_idmap-2.2.0-19.el8.aarch64.rpmf6901f426464b3366bcd014b27b5cab7-
python3-sss-2.2.0-19.el8.aarch64.rpm53aa87f1b5d3674c4ac9e962d18eb363-
python3-sss-murmur-2.2.0-19.el8.aarch64.rpm85b593c06b48f8a185d38ecb56884b12-
python3-sssdconfig-2.2.0-19.el8.noarch.rpmbeb62b9d746c46421239bb5e271d5377-
sssd-2.2.0-19.el8.aarch64.rpm9200775f8a98d70bb89063d5c6297c05-
sssd-ad-2.2.0-19.el8.aarch64.rpmb75674aa76011501f1d09b7e34f6f517-
sssd-client-2.2.0-19.el8.aarch64.rpm5aba04d1f9542de73250a53d883d1787-
sssd-common-2.2.0-19.el8.aarch64.rpm4a0499202f334d01fdf46759c06928cf-
sssd-common-pac-2.2.0-19.el8.aarch64.rpm52da30bc8ca7ffd2c07cbfc381f83e2c-
sssd-dbus-2.2.0-19.el8.aarch64.rpm0b034334d875eab0c3b652ee0393dc64-
sssd-ipa-2.2.0-19.el8.aarch64.rpm4a4f13b77a3e2192ee9ff3c6e5c4f45e-
sssd-kcm-2.2.0-19.el8.aarch64.rpma2d2a6a0714998a6e2915a2f4ae2d1e5-
sssd-krb5-2.2.0-19.el8.aarch64.rpm78630afbc7b870e81b10aedd0683f950-
sssd-krb5-common-2.2.0-19.el8.aarch64.rpm5a4bc3dab46af8e9576576d2287f510f-
sssd-ldap-2.2.0-19.el8.aarch64.rpm491ba06520285823a2daec9801e774be-
sssd-libwbclient-2.2.0-19.el8.aarch64.rpm1ab3deeffb1f2b5f999dc46964fb73f8-
sssd-nfs-idmap-2.2.0-19.el8.aarch64.rpmfa6b8126e1e403f197fa07c0b94206cc-
sssd-polkit-rules-2.2.0-19.el8.aarch64.rpm740832b804c4ddbcdbf0b056923a1a87-
sssd-proxy-2.2.0-19.el8.aarch64.rpm093c4e031c9d26221d57afca432f9af9-
sssd-tools-2.2.0-19.el8.aarch64.rpm6fd6ff39a912fcd466ef0c407afff4f9-
sssd-winbind-idmap-2.2.0-19.el8.aarch64.rpmf6d80a77c873e4ccc1a67757b712608a-
Oracle Linux 8 (x86_64) sssd-2.2.0-19.el8.src.rpm1fd34563579283f9af532c13a3bcabab-
libipa_hbac-2.2.0-19.el8.i686.rpm575e33813db86cbc0a02f0bc07856a43-
libipa_hbac-2.2.0-19.el8.x86_64.rpm5b8616f5ae1b3f5f7959e457b465b051-
libsss_autofs-2.2.0-19.el8.x86_64.rpmd9e1edc5772fbe6be6b1f492f61ebcb7-
libsss_certmap-2.2.0-19.el8.i686.rpm25a6c33e12bd6408eb2c2f4e996d31c9-
libsss_certmap-2.2.0-19.el8.x86_64.rpmabcc321d428659862c7132fee226c5dc-
libsss_idmap-2.2.0-19.el8.i686.rpmaddd375985e13fae5dbd30a19873b647-
libsss_idmap-2.2.0-19.el8.x86_64.rpm63498746ee23b0ec1cccb9ef9b0a91a7-
libsss_nss_idmap-2.2.0-19.el8.i686.rpm591188ebc570e373fa42422cae8c3751-
libsss_nss_idmap-2.2.0-19.el8.x86_64.rpmfffcb849b87bc55560cf96b8431aff66-
libsss_nss_idmap-devel-2.2.0-19.el8.i686.rpm00fd2523ea52d6e5fa4cf9c1523e40d9-
libsss_nss_idmap-devel-2.2.0-19.el8.x86_64.rpm3bfab22bc3801d53e609b4e824887df9-
libsss_simpleifp-2.2.0-19.el8.i686.rpm645199a9c5ec3a287116e9cbea3b9030-
libsss_simpleifp-2.2.0-19.el8.x86_64.rpmfb1dae6b8ba3392707e1bc2ba8eeacc1-
libsss_sudo-2.2.0-19.el8.x86_64.rpme24f8cb15969bfe259a014a819ab3b1c-
python3-libipa_hbac-2.2.0-19.el8.x86_64.rpm5140f1ed1e94d63cadef7361ca2b5793-
python3-libsss_nss_idmap-2.2.0-19.el8.x86_64.rpmcb04b96e594dfb3fd70dac19633ab542-
python3-sss-2.2.0-19.el8.x86_64.rpm55368e0baac094d3b73182a2b64d3254-
python3-sss-murmur-2.2.0-19.el8.x86_64.rpm2bd495cb3593c00bb6189805dc2d4d61-
python3-sssdconfig-2.2.0-19.el8.noarch.rpmbeb62b9d746c46421239bb5e271d5377-
sssd-2.2.0-19.el8.x86_64.rpm462642ab35aa8944b885a4d5c2e113d8-
sssd-ad-2.2.0-19.el8.x86_64.rpm976fa54eb16dacea84c5ab449e826217-
sssd-client-2.2.0-19.el8.i686.rpmf0e6ac9ae3c156606170fe5a02d8b8e9-
sssd-client-2.2.0-19.el8.x86_64.rpme4f6934d3a259d40f5192e6194349c1f-
sssd-common-2.2.0-19.el8.x86_64.rpmfb1f89423431afc35e8cf028f93144e0-
sssd-common-pac-2.2.0-19.el8.x86_64.rpm063394f955406f5e43be058e0535a68d-
sssd-dbus-2.2.0-19.el8.x86_64.rpmd7252bf3bf7d41122ad7c927f1cd187e-
sssd-ipa-2.2.0-19.el8.x86_64.rpm27fad98e09557c19dcf4a40c5745c7f6-
sssd-kcm-2.2.0-19.el8.x86_64.rpm1dae8a0e35ad25db1a0b2d5915ad1f76-
sssd-krb5-2.2.0-19.el8.x86_64.rpm238dd872cdc90cbfa4de117d87232fa2-
sssd-krb5-common-2.2.0-19.el8.x86_64.rpme42a01c8e47ea0ecbd5974ed5fcd4508-
sssd-ldap-2.2.0-19.el8.x86_64.rpm09c3ea15a5792b82d7415124f714e1e6-
sssd-libwbclient-2.2.0-19.el8.x86_64.rpm2ffae605ce174cfdc7d908abecc8fc98-
sssd-nfs-idmap-2.2.0-19.el8.x86_64.rpm887c856dc150fd17c1838a29f90c46d9-
sssd-polkit-rules-2.2.0-19.el8.x86_64.rpmc510916601a8bcb1fca94cf46f64e4c7-
sssd-proxy-2.2.0-19.el8.x86_64.rpm666a188f719655def8fc8b5cb0667230-
sssd-tools-2.2.0-19.el8.x86_64.rpm09f31bd538fd0ad19e28beb5dd59cf5c-
sssd-winbind-idmap-2.2.0-19.el8.x86_64.rpm207922bad69abaeaafea772fd0d8f8fa-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights