Oracle Linux Security Advisory ELSA-2023-0403

https://linux.oracle.com/errata/ELSA-2023-0403.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
libipa_hbac-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_autofs-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_certmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_nss_idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_simpleifp-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_sudo-1.16.5-10.0.3.el7_9.15.aarch64.rpm
python-libipa_hbac-1.16.5-10.0.3.el7_9.15.aarch64.rpm
python-libsss_nss_idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm
python-sss-1.16.5-10.0.3.el7_9.15.aarch64.rpm
python-sssdconfig-1.16.5-10.0.3.el7_9.15.noarch.rpm
python-sss-murmur-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-ad-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-client-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-common-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-common-pac-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-dbus-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-ipa-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-kcm-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-krb5-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-krb5-common-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-ldap-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-libwbclient-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-polkit-rules-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-proxy-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-tools-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-winbind-idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libipa_hbac-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_certmap-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_idmap-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_nss_idmap-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm
libsss_simpleifp-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm
sssd-libwbclient-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm


SRPMS:
https://oss.oracle.com:443/ol7/SRPMS-updates//sssd-1.16.5-10.0.3.el7_9.15.src.rpm

Related CVEs:

CVE-2022-4254




Description of changes:

[1.16.5-10.0.3]
- Revert Redhat's change of disallowing duplicated incomplete gid
  when "id_provider=ldap" is used, which caused regression in AD
  environment. [Orabug: 29286774] [Doc ID 2605732.1]

[1.16.5-10.15]
- Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z]
- Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle7: ELSA-2023-0403: sssd Important (aarch64) Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[1.16.5-10.0.3] - Revert Redhat's change of disallowing duplicated incomplete gid when "id_provider=ldap" is used, which caused regression in AD environment. [Orabug: 29286774] [Doc ID 2605732.1] [1.16.5-10.15] - Resolves: rhbz#2149703 - smartcards: special characters must be escaped when building search filter [rhel-7.9.z] - Resolves: rhbz#2149902 - EMBARGOED CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters [rhel-7.9.z]

SRPMs

https://oss.oracle.com:443/ol7/SRPMS-updates//sssd-1.16.5-10.0.3.el7_9.15.src.rpm

x86_64

aarch64

libipa_hbac-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_autofs-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_certmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_nss_idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_simpleifp-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_sudo-1.16.5-10.0.3.el7_9.15.aarch64.rpm python-libipa_hbac-1.16.5-10.0.3.el7_9.15.aarch64.rpm python-libsss_nss_idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm python-sss-1.16.5-10.0.3.el7_9.15.aarch64.rpm python-sssdconfig-1.16.5-10.0.3.el7_9.15.noarch.rpm python-sss-murmur-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-ad-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-client-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-common-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-common-pac-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-dbus-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-ipa-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-kcm-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-krb5-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-krb5-common-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-ldap-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-libwbclient-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-polkit-rules-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-proxy-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-tools-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-winbind-idmap-1.16.5-10.0.3.el7_9.15.aarch64.rpm libipa_hbac-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_certmap-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_idmap-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_nss_idmap-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm libsss_simpleifp-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm sssd-libwbclient-devel-1.16.5-10.0.3.el7_9.15.aarch64.rpm

i386

Severity
Related CVEs: CVE-2022-4254

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved