Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
219
security advisorybuffer overflowimportantCentOS 9 Stream Hypothetical SQL Threat Evaluation RLSB-2026-4093
Important: munge security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:3033", "synopsis": "Important: munge security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for munge.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having common users and groups. These hosts form a security realm that is defined by a shared cryptographic key. Clients within this security realm can create and validate credentials without the use of root privileges, reserved ports, or platform-specific methods.\n\nSecurity Fix(es):\n\n* MUNGE: MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery (CVE-2026-25506)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2438715", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2438715", "description": ""}], "cves": [{"name": "CVE-2026-25506", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25506", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L", "cvss3BaseScore": "7.7", "cwe": "CWE-120"}], "references": [], "publishedAt": "2026-02-24T18:56:34.668877Z", "rpms": {"Rocky Linux 10": {"nvras": ["munge-libs-0:0.5.15-11.el10_1.aarch64.rpm", "munge-debuginfo-0:0.5.15-11.el10_1.aarch64.rpm", "munge-debuginfo-0:0.5.15-11.el10_1.s390x.rpm","munge-devel-0:0.5.15-11.el10_1.x86_64.rpm", "munge-debugsource-0:0.5.15-11.el10_1.aarch64.rpm", "munge-libs-0:0.5.15-11.el10_1.ppc64le.rpm", "munge-devel-0:0.5.15-11.el10_1.s390x.rpm", "munge-0:0.5.15-11.el10_1.s390x.rpm", "munge-debugsource-0:0.5.15-11.el10_1.x86_64.rpm", "munge-debugsource-0:0.5.15-11.el10_1.ppc64le.rpm", "munge-libs-0:0.5.15-11.el10_1.x86_64.rpm", "munge-0:0.5.15-11.el10_1.src.rpm", "munge-libs-0:0.5.15-11.el10_1.s390x.rpm", "munge-libs-debuginfo-0:0.5.15-11.el10_1.aarch64.rpm", "munge-debugsource-0:0.5.15-11.el10_1.s390x.rpm", "munge-0:0.5.15-11.el10_1.ppc64le.rpm", "munge-libs-debuginfo-0:0.5.15-11.el10_1.ppc64le.rpm", "munge-0:0.5.15-11.el10_1.x86_64.rpm", "munge-debuginfo-0:0.5.15-11.el10_1.ppc64le.rpm", "munge-libs-debuginfo-0:0.5.15-11.el10_1.x86_64.rpm", "munge-devel-0:0.5.15-11.el10_1.aarch64.rpm", "munge-libs-debuginfo-0:0.5.15-11.el10_1.s390x.rpm", "munge-0:0.5.15-11.el10_1.aarch64.rpm", "munge-debuginfo-0:0.5.15-11.el10_1.x86_64.rpm", "munge-devel-0:0.5.15-11.el10_1.ppc64le.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Munge authentication service update for Rocky Linux 10 addressing important buffer overflow and credential forgery risks.. security patch, Rocky Linux update, malleability risk, credential forensics. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2026
•Important
Rocky Linux
217
security advisorysecurity updatecriticalOracle Linux 6 ELSA-2022-9239 Critical: Cyrus SASL Authentication Fix
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-9239 https://linux.oracle.com/errata/ELSA-2022-9239.html The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: i386: cyrus-sasl-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-devel-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-gssapi-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-ldap-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-lib-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-md5-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-ntlm-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-plain-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-sql-2.1.23-15.0.1.el6_6.2.i686.rpm x86_64: cyrus-sasl-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-devel-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-devel-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-gssapi-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-gssapi-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-ldap-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-ldap-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-lib-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-lib-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-md5-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-md5-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-ntlm-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-ntlm-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-plain-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-plain-2.1.23-15.0.1.el6_6.2.x86_64.rpm cyrus-sasl-sql-2.1.23-15.0.1.el6_6.2.i686.rpm cyrus-sasl-sql-2.1.23-15.0.1.el6_6.2.x86_64.rpm Related CVEs: CVE-2022-24407 Description of changes: [2.1.23-15.0.1.2] - Escape password for SQL insert/update commands [CVE-2022-24407][Orabug: 33936121] _______________________________________________ El-errata mailing list
Mar 24, 2022
•Critical
Oracle
98
security advisoryRed Hat Enterprise Linuxsecurity impactRed Hat 8.2 RHSA-2021:3365-01 Important: SSSD Command Injection
An update for sssd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: sssd security update Advisory ID: RHSA-2021:3365-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3365 Issue date: 2021-08-31 CVE Names: CVE-2021-3621 ==================================================================== 1. Summary: An update for sssd is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder EUS (v. 8.2) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS EUS (v. 8.2) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Security Fix(es): * sssd: shell command injection in sssctl (CVE-2021-3621) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes thechanges described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1975142 - CVE-2021-3621 sssd: shell command injection in sssctl 6. Package List: Red Hat Enterprise Linux BaseOS EUS (v.8.2): Source: sssd-2.2.3-20.el8_2.1.src.rpm aarch64: libipa_hbac-2.2.3-20.el8_2.1.aarch64.rpm libipa_hbac-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_autofs-2.2.3-20.el8_2.1.aarch64.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_certmap-2.2.3-20.el8_2.1.aarch64.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_idmap-2.2.3-20.el8_2.1.aarch64.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_nss_idmap-2.2.3-20.el8_2.1.aarch64.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_simpleifp-2.2.3-20.el8_2.1.aarch64.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_sudo-2.2.3-20.el8_2.1.aarch64.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-libipa_hbac-2.2.3-20.el8_2.1.aarch64.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-libsss_nss_idmap-2.2.3-20.el8_2.1.aarch64.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-sss-2.2.3-20.el8_2.1.aarch64.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-sss-murmur-2.2.3-20.el8_2.1.aarch64.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-2.2.3-20.el8_2.1.aarch64.rpm sssd-ad-2.2.3-20.el8_2.1.aarch64.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-client-2.2.3-20.el8_2.1.aarch64.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-common-2.2.3-20.el8_2.1.aarch64.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-common-pac-2.2.3-20.el8_2.1.aarch64.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-dbus-2.2.3-20.el8_2.1.aarch64.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-debugsource-2.2.3-20.el8_2.1.aarch64.rpm sssd-ipa-2.2.3-20.el8_2.1.aarch64.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-kcm-2.2.3-20.el8_2.1.aarch64.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-krb5-2.2.3-20.el8_2.1.aarch64.rpm sssd-krb5-common-2.2.3-20.el8_2.1.aarch64.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-ldap-2.2.3-20.el8_2.1.aarch64.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-libwbclient-2.2.3-20.el8_2.1.aarch64.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-nfs-idmap-2.2.3-20.el8_2.1.aarch64.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-polkit-rules-2.2.3-20.el8_2.1.aarch64.rpm sssd-proxy-2.2.3-20.el8_2.1.aarch64.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-tools-2.2.3-20.el8_2.1.aarch64.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-winbind-idmap-2.2.3-20.el8_2.1.aarch64.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm noarch: python3-sssdconfig-2.2.3-20.el8_2.1.noarch.rpm ppc64le: libipa_hbac-2.2.3-20.el8_2.1.ppc64le.rpm libipa_hbac-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_autofs-2.2.3-20.el8_2.1.ppc64le.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_certmap-2.2.3-20.el8_2.1.ppc64le.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_idmap-2.2.3-20.el8_2.1.ppc64le.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_nss_idmap-2.2.3-20.el8_2.1.ppc64le.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_simpleifp-2.2.3-20.el8_2.1.ppc64le.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_sudo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-libipa_hbac-2.2.3-20.el8_2.1.ppc64le.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-libsss_nss_idmap-2.2.3-20.el8_2.1.ppc64le.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-sss-2.2.3-20.el8_2.1.ppc64le.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-sss-murmur-2.2.3-20.el8_2.1.ppc64le.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ad-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-client-2.2.3-20.el8_2.1.ppc64le.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-common-2.2.3-20.el8_2.1.ppc64le.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-common-pac-2.2.3-20.el8_2.1.ppc64le.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-dbus-2.2.3-20.el8_2.1.ppc64le.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-debugsource-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ipa-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-kcm-2.2.3-20.el8_2.1.ppc64le.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-krb5-2.2.3-20.el8_2.1.ppc64le.rpm sssd-krb5-common-2.2.3-20.el8_2.1.ppc64le.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ldap-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-libwbclient-2.2.3-20.el8_2.1.ppc64le.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-nfs-idmap-2.2.3-20.el8_2.1.ppc64le.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-polkit-rules-2.2.3-20.el8_2.1.ppc64le.rpm sssd-proxy-2.2.3-20.el8_2.1.ppc64le.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-tools-2.2.3-20.el8_2.1.ppc64le.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-winbind-idmap-2.2.3-20.el8_2.1.ppc64le.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm s390x: libipa_hbac-2.2.3-20.el8_2.1.s390x.rpm libipa_hbac-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_autofs-2.2.3-20.el8_2.1.s390x.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_certmap-2.2.3-20.el8_2.1.s390x.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_idmap-2.2.3-20.el8_2.1.s390x.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_nss_idmap-2.2.3-20.el8_2.1.s390x.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_simpleifp-2.2.3-20.el8_2.1.s390x.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_sudo-2.2.3-20.el8_2.1.s390x.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-libipa_hbac-2.2.3-20.el8_2.1.s390x.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-libsss_nss_idmap-2.2.3-20.el8_2.1.s390x.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-sss-2.2.3-20.el8_2.1.s390x.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-sss-murmur-2.2.3-20.el8_2.1.s390x.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-2.2.3-20.el8_2.1.s390x.rpm sssd-ad-2.2.3-20.el8_2.1.s390x.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-client-2.2.3-20.el8_2.1.s390x.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-common-2.2.3-20.el8_2.1.s390x.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-common-pac-2.2.3-20.el8_2.1.s390x.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-dbus-2.2.3-20.el8_2.1.s390x.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-debugsource-2.2.3-20.el8_2.1.s390x.rpm sssd-ipa-2.2.3-20.el8_2.1.s390x.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-kcm-2.2.3-20.el8_2.1.s390x.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-krb5-2.2.3-20.el8_2.1.s390x.rpm sssd-krb5-common-2.2.3-20.el8_2.1.s390x.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-ldap-2.2.3-20.el8_2.1.s390x.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-libwbclient-2.2.3-20.el8_2.1.s390x.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-nfs-idmap-2.2.3-20.el8_2.1.s390x.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-proxy-2.2.3-20.el8_2.1.s390x.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-tools-2.2.3-20.el8_2.1.s390x.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-winbind-idmap-2.2.3-20.el8_2.1.s390x.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm x86_64: libipa_hbac-2.2.3-20.el8_2.1.i686.rpm libipa_hbac-2.2.3-20.el8_2.1.x86_64.rpm libipa_hbac-debuginfo-2.2.3-20.el8_2.1.i686.rpm libipa_hbac-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_autofs-2.2.3-20.el8_2.1.x86_64.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_certmap-2.2.3-20.el8_2.1.i686.rpm libsss_certmap-2.2.3-20.el8_2.1.x86_64.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_idmap-2.2.3-20.el8_2.1.i686.rpm libsss_idmap-2.2.3-20.el8_2.1.x86_64.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_nss_idmap-2.2.3-20.el8_2.1.i686.rpm libsss_nss_idmap-2.2.3-20.el8_2.1.x86_64.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_simpleifp-2.2.3-20.el8_2.1.i686.rpm libsss_simpleifp-2.2.3-20.el8_2.1.x86_64.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_sudo-2.2.3-20.el8_2.1.x86_64.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-libipa_hbac-2.2.3-20.el8_2.1.x86_64.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-libsss_nss_idmap-2.2.3-20.el8_2.1.x86_64.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-sss-2.2.3-20.el8_2.1.x86_64.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-sss-murmur-2.2.3-20.el8_2.1.x86_64.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-2.2.3-20.el8_2.1.x86_64.rpm sssd-ad-2.2.3-20.el8_2.1.x86_64.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-client-2.2.3-20.el8_2.1.i686.rpm sssd-client-2.2.3-20.el8_2.1.x86_64.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-common-2.2.3-20.el8_2.1.x86_64.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-common-pac-2.2.3-20.el8_2.1.x86_64.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-dbus-2.2.3-20.el8_2.1.x86_64.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-debugsource-2.2.3-20.el8_2.1.i686.rpm sssd-debugsource-2.2.3-20.el8_2.1.x86_64.rpm sssd-ipa-2.2.3-20.el8_2.1.x86_64.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-kcm-2.2.3-20.el8_2.1.x86_64.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-krb5-2.2.3-20.el8_2.1.x86_64.rpm sssd-krb5-common-2.2.3-20.el8_2.1.x86_64.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-ldap-2.2.3-20.el8_2.1.x86_64.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-libwbclient-2.2.3-20.el8_2.1.x86_64.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-nfs-idmap-2.2.3-20.el8_2.1.x86_64.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-polkit-rules-2.2.3-20.el8_2.1.x86_64.rpm sssd-proxy-2.2.3-20.el8_2.1.x86_64.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-tools-2.2.3-20.el8_2.1.x86_64.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-winbind-idmap-2.2.3-20.el8_2.1.x86_64.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm Red Hat CodeReady Linux Builder EUS (v.8.2): aarch64: libipa_hbac-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_nss_idmap-devel-2.2.3-20.el8_2.1.aarch64.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-debugsource-2.2.3-20.el8_2.1.aarch64.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.aarch64.rpm ppc64le: libipa_hbac-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_nss_idmap-devel-2.2.3-20.el8_2.1.ppc64le.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-debugsource-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.ppc64le.rpm s390x: libipa_hbac-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_nss_idmap-devel-2.2.3-20.el8_2.1.s390x.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.s390x.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.s390x.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-debugsource-2.2.3-20.el8_2.1.s390x.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.s390x.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.s390x.rpm x86_64: libipa_hbac-debuginfo-2.2.3-20.el8_2.1.i686.rpm libipa_hbac-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_autofs-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_certmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_nss_idmap-devel-2.2.3-20.el8_2.1.i686.rpm libsss_nss_idmap-devel-2.2.3-20.el8_2.1.x86_64.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_simpleifp-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.i686.rpm libsss_sudo-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-libipa_hbac-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-libsss_nss_idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-sss-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.i686.rpm python3-sss-murmur-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-ad-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-client-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-common-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-common-pac-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-dbus-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-debugsource-2.2.3-20.el8_2.1.i686.rpm sssd-debugsource-2.2.3-20.el8_2.1.x86_64.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-ipa-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-kcm-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-krb5-common-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-krb5-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-ldap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-libwbclient-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-nfs-idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-proxy-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-tools-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.i686.rpm sssd-winbind-idmap-debuginfo-2.2.3-20.el8_2.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-3621 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYS31AdzjgjWX9erEAQjrDA//c+uKsX2tZxz05tJTEz3hhNNUMro49VJN I3KZH9TOFdoSdwQasAHqsGSwXGfZOSrHQU1CMAO02IeDhbhvWHh0+nnh5FwEM85r Q7/ycFzO9urnVj70wWWN+0EIEJ9lHB17ouSEEZn1KAG0ERdmtuLO2wSf104BN0P0 o2sux1WZWva9aLgYIzy9O0FfUpLXFU5X43qjlkU6ZYKdkig8m1WqUvWVbtGnSBCx cIy7dCqMVASL7KQ1+Nby6yMN4jH/GppGxaU/VQckh7zm6IaxeGXfTAfhbuToGJwS hn99PMzL/diUuWi/3qneEIW6OVRDzQ/K33ELnDqbvhZEEaWbyjF/9LJ0ZyMLn/dy uqgJ0vM8MRR3Gvjj4ldaE8rd3i6jFG7yzQmys0mpIIWzWaCpqfMtzJKwq+nNaz6v khJUqdbFB1+6QXasWibiBU0DPWn8BnF1kbJoH+ozyJ0mOcHWG6zxqOXW5b/JL9Zw 0RS487ZHwUn0SKKocOOzzPt7vyRlF3+7fpeIA15Q/gQFjATVb5YojbJ5P9+CVUcI v5aE5LtCJtaxYglzkdNwJPK/4bVFJns2r6Pf5WVyXH5hDbjr7OCL51XDcqQdLqQh t4lNiGffPVqi2JTrHYCmQ6tE06/A2vvUdaRunVfF3Y5ov/tfvbmOyBh60xC4NWF4 lPF9y7f5waA=iTbC -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 31, 2021
•Important
Red Hat
197
security advisorydebianauthentication serviceDebian 9 DLA-2730-1: Moderate Issue in libpam-tacplus Secret Handling
It was discovered that there was an issue in libpam-tacplus (a security module for using the TACACS+ authentication service) where shared secrets such as private server keys were being added in the clear to various logs. . - ----------------------------------------------------------------------- Debian LTS Advisory DLA-2730-1
Aug 04, 2021
•Critical
Debian LTS
98
security advisorymoderateRed HatRed Hat: RHSA-2019-3421-01 Moderate: mod_auth_mellon Open Redirect
An update for mod_auth_mellon is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: mod_auth_mellon security, bug fix, and enhancement update Advisory ID: RHSA-2019:3421-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:3421 Issue date: 2019-11-05 CVE Names: CVE-2019-3877 ==================================================================== 1. Summary: An update for mod_auth_mellon is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The mod_auth_mellon module for the Apache HTTP Server is an authentication service that implements the SAML 2.0 federation protocol. The module grants access based on the attributes received in assertions generated by an IdP server. Security Fix(es): * mod_auth_mellon: open redirect in logout url when using URLs with backslashes (CVE-2019-3877) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section. 4. Solution: For details on how toapply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1691125 - CVE-2019-3877 mod_auth_mellon: open redirect in logout url when using URLs with backslashes 1691894 - [RFE] Config option to change mod_auth_mellon prefix 1702695 - fresh install of mod_auth_mellon shows rpm verification warnings 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: mod_auth_mellon-0.14.0-9.el8.src.rpm aarch64: mod_auth_mellon-0.14.0-9.el8.aarch64.rpm mod_auth_mellon-debuginfo-0.14.0-9.el8.aarch64.rpm mod_auth_mellon-debugsource-0.14.0-9.el8.aarch64.rpm mod_auth_mellon-diagnostics-0.14.0-9.el8.aarch64.rpm mod_auth_mellon-diagnostics-debuginfo-0.14.0-9.el8.aarch64.rpm ppc64le: mod_auth_mellon-0.14.0-9.el8.ppc64le.rpm mod_auth_mellon-debuginfo-0.14.0-9.el8.ppc64le.rpm mod_auth_mellon-debugsource-0.14.0-9.el8.ppc64le.rpm mod_auth_mellon-diagnostics-0.14.0-9.el8.ppc64le.rpm mod_auth_mellon-diagnostics-debuginfo-0.14.0-9.el8.ppc64le.rpm s390x: mod_auth_mellon-0.14.0-9.el8.s390x.rpm mod_auth_mellon-debuginfo-0.14.0-9.el8.s390x.rpm mod_auth_mellon-debugsource-0.14.0-9.el8.s390x.rpm mod_auth_mellon-diagnostics-0.14.0-9.el8.s390x.rpm mod_auth_mellon-diagnostics-debuginfo-0.14.0-9.el8.s390x.rpm x86_64: mod_auth_mellon-0.14.0-9.el8.x86_64.rpm mod_auth_mellon-debuginfo-0.14.0-9.el8.x86_64.rpm mod_auth_mellon-debugsource-0.14.0-9.el8.x86_64.rpm mod_auth_mellon-diagnostics-0.14.0-9.el8.x86_64.rpm mod_auth_mellon-diagnostics-debuginfo-0.14.0-9.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2019-3877 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.1_release_notes/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPG v1 iQIVAwUBXcHqjtzjgjWX9erEAQjTjg/+NL4lIZyw4ErfkSFpRY009ZFy+wmlkhKO J1rEkqs+l3k1Ld1ZH/xF71Fro1NxseudPQ5EwT2R8DvEWOEMG6l6eCPvT5IGGYa+ FM8bFHwzrwdv+iC+KKWr+VxF8/mtKup0S1e4yqA+784IGeNB00SWlykTk9yHgpoi 4MT6T6BYpB6Z79bq2j+O5e7+ChT/8ZHcRpl3KFNy7IGETJOHfWqeNqe92J3RKwxw SxliJejIn8F385GVFay2KYvLXnKkqU0RkbtrsHHNlblUQrC0b0cXK+FqnP5XhNd+ VYSFNikRGULAGgcEazg0328KY3CBcaT8m7aIFsw4qv1uaVp1JSqUcqlPuHMl2xEd XgVX9l4SMSeah4FwrPrEsjrth4wszv/aGOjSZuihLQVWjtevtHF+xS89qhhgzUVg MJqDXNlYHN9HljNvDzDp6XxsDNxepcIrNM8QWnzs3uEvcE1LC76FElZ39EtuzAvL uvBN8mIE5zC+Q8qO/B/s/Ku/Iz9OCSp1olE4oizlRyvu9VHDpL5fNhHSE+bINjlB IL3eCD+fjTFrANhsvX35ounOEkK09fGOlTbi8r0qRrfGX6tv7TJwDtgdOv5jCI2a o2w51OFxYr1RfJpYkDMORtc6Z5KU13cTDvhjoPPZ2CQrafOrDpMMhK7BrGDQvYm/ oGt5zZMkLUU=8mn9 -----END PGP SIGNATURE-------RHSA-announce mailing list
Nov 05, 2019
•Important
Red Hat
98
security advisorybug fixRed Hat Enterprise LinuxRed Hat Enterprise Linux 7 RHSA-2018-3158-01 Low SSSD Bug Fix
An update for sssd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: sssd security, bug fix, and enhancement update Advisory ID: RHSA-2018:3158-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:3158 Issue date: 2018-10-30 CVE Names: CVE-2018-10852 ==================================================================== 1. Summary: An update for sssd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - aarch64, noarch, ppc64le, s390x Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7) - aarch64, ppc64le, s390x 3. Description: The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remotedirectories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. The following packages have been upgraded to a later upstream version: sssd (1.16.2). (BZ#1558498) Security Fix(es): * sssd: information leak from the sssd-sudo responder (CVE-2018-10852) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. This issue was discovered by Jakub Hrozek (Red Hat). Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1385665 - Incorrect error code returned from krb5_child (updated) 1416528 - sssd in cross realm trust configuration should be able to use AD KDCs from a client site defined in sssd.conf or a snippet 1459348 - extend sss-certmap man page regarding priority processing 1509691 - Document how to change the regular expression for SSSD so that group names with an @-sign can be parsed 1514061 - ID override GID from Default Trust View is not properly resolved in case domain resolution order is set 1516266 - Give a more detailed debug and system-log message if krb5_init_context() failed 1522928 - sssd doesn't allow user with expired password to login when PasswordgraceLimit set 1534749 - Requesting an AD user's private group and then the user itself returns an emty homedir 1537272 - SSH public key authentication keeps working after keys are removed from ID view 1537279 - Certificate is not removed from cache when it's removed from the override 1538555 - crash in nss_protocol_fill_netgrent.sssd_nss[19234]: segfault at 80 ip 000055612688c2a0 sp 00007ffddf9b9cd0 error 4 in sssd_nss[55612687e000+39000] 1546754 - The man page of sss_ssh_authorizedkeys can be enhanced to better explain how the keys are retrieved and how X.509 certificates can be used 1558498 - Rebase sssd to the latests upstream release of the 1.16 branch 1562025 - externalUser sudo attribute must be fully-qualified 1565774 - After updating to RHEL 7.5 failing to clear the sssd cache 1566782 - memory management issue in the sssd_nss_ex interface can cause the ns-slapd process on IPA server to crash 1571526 - SSSD with ID provider 'ad' should give a warning in case the ldap schema is manually changed to something different than 'ad'. 1577335 - /usr/libexec/sssd/sssd_autofs SIGABRT crash daily 1578291 - Samba can not register sss idmap module because it's using an outdated SMB_IDMAP_INTERFACE_VERSION 1583251 - home dir disappear in sssd cache on the IPA master for AD users1583725 - SSSD AD uses LDAP filter to detect POSIX attributes stored in AD GC also for regular AD DC queries 1588810 - CVE-2018-10852 sssd: information leak from the sssd-sudo responder 1600822 - SSSD bails out saving desktop profiles in case an invalid profile is found 1602781 - Offline logins and/or id_provider=local logins fail after upgrade to 7.6 1607313 - When sssd is running as non-root user, the sudo pipe is created as sssd:sssd but then the private pipe ownership fails 1610667 - sssd_ssh leaks file descriptors when more than one certificate is converted into an SSH key 6. Package List: Red Hat Enterprise Linux Client (v.7): Source: sssd-1.16.2-13.el7.src.rpm noarch: python-sssdconfig-1.16.2-13.el7.noarch.rpm x86_64: libipa_hbac-1.16.2-13.el7.i686.rpm libipa_hbac-1.16.2-13.el7.x86_64.rpm libsss_autofs-1.16.2-13.el7.x86_64.rpm libsss_certmap-1.16.2-13.el7.i686.rpm libsss_certmap-1.16.2-13.el7.x86_64.rpm libsss_idmap-1.16.2-13.el7.i686.rpm libsss_idmap-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-1.16.2-13.el7.i686.rpm libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-1.16.2-13.el7.i686.rpm libsss_simpleifp-1.16.2-13.el7.x86_64.rpm libsss_sudo-1.16.2-13.el7.x86_64.rpm python-libipa_hbac-1.16.2-13.el7.x86_64.rpm python-sss-1.16.2-13.el7.x86_64.rpm python-sss-murmur-1.16.2-13.el7.x86_64.rpm sssd-1.16.2-13.el7.x86_64.rpm sssd-ad-1.16.2-13.el7.x86_64.rpm sssd-client-1.16.2-13.el7.i686.rpm sssd-client-1.16.2-13.el7.x86_64.rpm sssd-common-1.16.2-13.el7.x86_64.rpm sssd-common-pac-1.16.2-13.el7.x86_64.rpm sssd-dbus-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-ipa-1.16.2-13.el7.x86_64.rpm sssd-kcm-1.16.2-13.el7.x86_64.rpm sssd-krb5-1.16.2-13.el7.x86_64.rpm sssd-krb5-common-1.16.2-13.el7.x86_64.rpm sssd-ldap-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-1.16.2-13.el7.x86_64.rpm sssd-polkit-rules-1.16.2-13.el7.x86_64.rpm sssd-proxy-1.16.2-13.el7.x86_64.rpm sssd-tools-1.16.2-13.el7.x86_64.rpm sssd-winbind-idmap-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v.7): x86_64: libipa_hbac-devel-1.16.2-13.el7.i686.rpm libipa_hbac-devel-1.16.2-13.el7.x86_64.rpm libsss_certmap-devel-1.16.2-13.el7.i686.rpm libsss_certmap-devel-1.16.2-13.el7.x86_64.rpm libsss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_nss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-devel-1.16.2-13.el7.i686.rpm libsss_simpleifp-devel-1.16.2-13.el7.x86_64.rpm python-libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-devel-1.16.2-13.el7.i686.rpm sssd-libwbclient-devel-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v.7): Source: sssd-1.16.2-13.el7.src.rpm noarch: python-sssdconfig-1.16.2-13.el7.noarch.rpm x86_64: libipa_hbac-1.16.2-13.el7.i686.rpm libipa_hbac-1.16.2-13.el7.x86_64.rpm libsss_autofs-1.16.2-13.el7.x86_64.rpm libsss_certmap-1.16.2-13.el7.i686.rpm libsss_certmap-1.16.2-13.el7.x86_64.rpm libsss_idmap-1.16.2-13.el7.i686.rpm libsss_idmap-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-1.16.2-13.el7.i686.rpm libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-1.16.2-13.el7.i686.rpm libsss_simpleifp-1.16.2-13.el7.x86_64.rpm libsss_sudo-1.16.2-13.el7.x86_64.rpm python-libipa_hbac-1.16.2-13.el7.x86_64.rpm python-sss-1.16.2-13.el7.x86_64.rpm python-sss-murmur-1.16.2-13.el7.x86_64.rpm sssd-1.16.2-13.el7.x86_64.rpm sssd-ad-1.16.2-13.el7.x86_64.rpm sssd-client-1.16.2-13.el7.i686.rpm sssd-client-1.16.2-13.el7.x86_64.rpm sssd-common-1.16.2-13.el7.x86_64.rpm sssd-common-pac-1.16.2-13.el7.x86_64.rpm sssd-dbus-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-ipa-1.16.2-13.el7.x86_64.rpm sssd-kcm-1.16.2-13.el7.x86_64.rpm sssd-krb5-1.16.2-13.el7.x86_64.rpm sssd-krb5-common-1.16.2-13.el7.x86_64.rpm sssd-ldap-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-1.16.2-13.el7.x86_64.rpm sssd-polkit-rules-1.16.2-13.el7.x86_64.rpm sssd-proxy-1.16.2-13.el7.x86_64.rpm sssd-tools-1.16.2-13.el7.x86_64.rpm sssd-winbind-idmap-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v.7): x86_64: libipa_hbac-devel-1.16.2-13.el7.i686.rpm libipa_hbac-devel-1.16.2-13.el7.x86_64.rpm libsss_certmap-devel-1.16.2-13.el7.i686.rpm libsss_certmap-devel-1.16.2-13.el7.x86_64.rpm libsss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_nss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-devel-1.16.2-13.el7.i686.rpm libsss_simpleifp-devel-1.16.2-13.el7.x86_64.rpm python-libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-devel-1.16.2-13.el7.i686.rpm sssd-libwbclient-devel-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: sssd-1.16.2-13.el7.src.rpm noarch: python-sssdconfig-1.16.2-13.el7.noarch.rpm ppc64: libipa_hbac-1.16.2-13.el7.ppc.rpm libipa_hbac-1.16.2-13.el7.ppc64.rpm libsss_autofs-1.16.2-13.el7.ppc64.rpm libsss_certmap-1.16.2-13.el7.ppc.rpm libsss_certmap-1.16.2-13.el7.ppc64.rpm libsss_idmap-1.16.2-13.el7.ppc.rpm libsss_idmap-1.16.2-13.el7.ppc64.rpm libsss_nss_idmap-1.16.2-13.el7.ppc.rpm libsss_nss_idmap-1.16.2-13.el7.ppc64.rpm libsss_simpleifp-1.16.2-13.el7.ppc.rpm libsss_simpleifp-1.16.2-13.el7.ppc64.rpm libsss_sudo-1.16.2-13.el7.ppc64.rpm python-libipa_hbac-1.16.2-13.el7.ppc64.rpm python-sss-1.16.2-13.el7.ppc64.rpm python-sss-murmur-1.16.2-13.el7.ppc64.rpm sssd-1.16.2-13.el7.ppc64.rpm sssd-ad-1.16.2-13.el7.ppc64.rpm sssd-client-1.16.2-13.el7.ppc.rpm sssd-client-1.16.2-13.el7.ppc64.rpm sssd-common-1.16.2-13.el7.ppc64.rpm sssd-common-pac-1.16.2-13.el7.ppc64.rpm sssd-dbus-1.16.2-13.el7.ppc64.rpm sssd-debuginfo-1.16.2-13.el7.ppc.rpm sssd-debuginfo-1.16.2-13.el7.ppc64.rpm sssd-ipa-1.16.2-13.el7.ppc64.rpm sssd-kcm-1.16.2-13.el7.ppc64.rpm sssd-krb5-1.16.2-13.el7.ppc64.rpm sssd-krb5-common-1.16.2-13.el7.ppc64.rpm sssd-ldap-1.16.2-13.el7.ppc64.rpm sssd-libwbclient-1.16.2-13.el7.ppc64.rpm sssd-polkit-rules-1.16.2-13.el7.ppc64.rpm sssd-proxy-1.16.2-13.el7.ppc64.rpm sssd-tools-1.16.2-13.el7.ppc64.rpm sssd-winbind-idmap-1.16.2-13.el7.ppc64.rpm ppc64le: libipa_hbac-1.16.2-13.el7.ppc64le.rpm libsss_autofs-1.16.2-13.el7.ppc64le.rpm libsss_certmap-1.16.2-13.el7.ppc64le.rpm libsss_idmap-1.16.2-13.el7.ppc64le.rpm libsss_nss_idmap-1.16.2-13.el7.ppc64le.rpm libsss_simpleifp-1.16.2-13.el7.ppc64le.rpm libsss_sudo-1.16.2-13.el7.ppc64le.rpm python-libipa_hbac-1.16.2-13.el7.ppc64le.rpm python-sss-1.16.2-13.el7.ppc64le.rpm python-sss-murmur-1.16.2-13.el7.ppc64le.rpm sssd-1.16.2-13.el7.ppc64le.rpm sssd-ad-1.16.2-13.el7.ppc64le.rpm sssd-client-1.16.2-13.el7.ppc64le.rpm sssd-common-1.16.2-13.el7.ppc64le.rpm sssd-common-pac-1.16.2-13.el7.ppc64le.rpm sssd-dbus-1.16.2-13.el7.ppc64le.rpm sssd-debuginfo-1.16.2-13.el7.ppc64le.rpm sssd-ipa-1.16.2-13.el7.ppc64le.rpm sssd-kcm-1.16.2-13.el7.ppc64le.rpm sssd-krb5-1.16.2-13.el7.ppc64le.rpm sssd-krb5-common-1.16.2-13.el7.ppc64le.rpm sssd-ldap-1.16.2-13.el7.ppc64le.rpm sssd-libwbclient-1.16.2-13.el7.ppc64le.rpm sssd-polkit-rules-1.16.2-13.el7.ppc64le.rpm sssd-proxy-1.16.2-13.el7.ppc64le.rpm sssd-tools-1.16.2-13.el7.ppc64le.rpm sssd-winbind-idmap-1.16.2-13.el7.ppc64le.rpm s390x: libipa_hbac-1.16.2-13.el7.s390.rpm libipa_hbac-1.16.2-13.el7.s390x.rpm libsss_autofs-1.16.2-13.el7.s390x.rpm libsss_certmap-1.16.2-13.el7.s390.rpm libsss_certmap-1.16.2-13.el7.s390x.rpm libsss_idmap-1.16.2-13.el7.s390.rpm libsss_idmap-1.16.2-13.el7.s390x.rpm libsss_nss_idmap-1.16.2-13.el7.s390.rpm libsss_nss_idmap-1.16.2-13.el7.s390x.rpm libsss_simpleifp-1.16.2-13.el7.s390.rpm libsss_simpleifp-1.16.2-13.el7.s390x.rpm libsss_sudo-1.16.2-13.el7.s390x.rpm python-libipa_hbac-1.16.2-13.el7.s390x.rpm python-sss-1.16.2-13.el7.s390x.rpm python-sss-murmur-1.16.2-13.el7.s390x.rpm sssd-1.16.2-13.el7.s390x.rpm sssd-ad-1.16.2-13.el7.s390x.rpm sssd-client-1.16.2-13.el7.s390.rpm sssd-client-1.16.2-13.el7.s390x.rpm sssd-common-1.16.2-13.el7.s390x.rpm sssd-common-pac-1.16.2-13.el7.s390x.rpm sssd-dbus-1.16.2-13.el7.s390x.rpm sssd-debuginfo-1.16.2-13.el7.s390.rpm sssd-debuginfo-1.16.2-13.el7.s390x.rpm sssd-ipa-1.16.2-13.el7.s390x.rpm sssd-kcm-1.16.2-13.el7.s390x.rpm sssd-krb5-1.16.2-13.el7.s390x.rpm sssd-krb5-common-1.16.2-13.el7.s390x.rpm sssd-ldap-1.16.2-13.el7.s390x.rpm sssd-libwbclient-1.16.2-13.el7.s390x.rpm sssd-polkit-rules-1.16.2-13.el7.s390x.rpm sssd-proxy-1.16.2-13.el7.s390x.rpm sssd-tools-1.16.2-13.el7.s390x.rpm sssd-winbind-idmap-1.16.2-13.el7.s390x.rpm x86_64: libipa_hbac-1.16.2-13.el7.i686.rpm libipa_hbac-1.16.2-13.el7.x86_64.rpm libsss_autofs-1.16.2-13.el7.x86_64.rpm libsss_certmap-1.16.2-13.el7.i686.rpm libsss_certmap-1.16.2-13.el7.x86_64.rpm libsss_idmap-1.16.2-13.el7.i686.rpm libsss_idmap-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-1.16.2-13.el7.i686.rpm libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-1.16.2-13.el7.i686.rpm libsss_simpleifp-1.16.2-13.el7.x86_64.rpm libsss_sudo-1.16.2-13.el7.x86_64.rpm python-libipa_hbac-1.16.2-13.el7.x86_64.rpm python-libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm python-sss-1.16.2-13.el7.x86_64.rpm python-sss-murmur-1.16.2-13.el7.x86_64.rpm sssd-1.16.2-13.el7.x86_64.rpm sssd-ad-1.16.2-13.el7.x86_64.rpm sssd-client-1.16.2-13.el7.i686.rpm sssd-client-1.16.2-13.el7.x86_64.rpm sssd-common-1.16.2-13.el7.x86_64.rpm sssd-common-pac-1.16.2-13.el7.x86_64.rpm sssd-dbus-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-ipa-1.16.2-13.el7.x86_64.rpm sssd-kcm-1.16.2-13.el7.x86_64.rpm sssd-krb5-1.16.2-13.el7.x86_64.rpm sssd-krb5-common-1.16.2-13.el7.x86_64.rpm sssd-ldap-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-1.16.2-13.el7.x86_64.rpm sssd-polkit-rules-1.16.2-13.el7.x86_64.rpm sssd-proxy-1.16.2-13.el7.x86_64.rpm sssd-tools-1.16.2-13.el7.x86_64.rpm sssd-winbind-idmap-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v.7): Source: sssd-1.16.2-13.el7.src.rpm aarch64: libipa_hbac-1.16.2-13.el7.aarch64.rpm libsss_autofs-1.16.2-13.el7.aarch64.rpm libsss_certmap-1.16.2-13.el7.aarch64.rpm libsss_idmap-1.16.2-13.el7.aarch64.rpm libsss_nss_idmap-1.16.2-13.el7.aarch64.rpm libsss_simpleifp-1.16.2-13.el7.aarch64.rpm libsss_sudo-1.16.2-13.el7.aarch64.rpm python-libipa_hbac-1.16.2-13.el7.aarch64.rpm python-libsss_nss_idmap-1.16.2-13.el7.aarch64.rpm python-sss-1.16.2-13.el7.aarch64.rpm python-sss-murmur-1.16.2-13.el7.aarch64.rpm sssd-1.16.2-13.el7.aarch64.rpm sssd-ad-1.16.2-13.el7.aarch64.rpm sssd-client-1.16.2-13.el7.aarch64.rpm sssd-common-1.16.2-13.el7.aarch64.rpm sssd-common-pac-1.16.2-13.el7.aarch64.rpm sssd-dbus-1.16.2-13.el7.aarch64.rpm sssd-debuginfo-1.16.2-13.el7.aarch64.rpm sssd-ipa-1.16.2-13.el7.aarch64.rpm sssd-kcm-1.16.2-13.el7.aarch64.rpm sssd-krb5-1.16.2-13.el7.aarch64.rpm sssd-krb5-common-1.16.2-13.el7.aarch64.rpm sssd-ldap-1.16.2-13.el7.aarch64.rpm sssd-libwbclient-1.16.2-13.el7.aarch64.rpm sssd-polkit-rules-1.16.2-13.el7.aarch64.rpm sssd-proxy-1.16.2-13.el7.aarch64.rpm sssd-tools-1.16.2-13.el7.aarch64.rpm sssd-winbind-idmap-1.16.2-13.el7.aarch64.rpm noarch: python-sssdconfig-1.16.2-13.el7.noarch.rpm ppc64le: libipa_hbac-1.16.2-13.el7.ppc64le.rpm libsss_autofs-1.16.2-13.el7.ppc64le.rpm libsss_certmap-1.16.2-13.el7.ppc64le.rpm libsss_idmap-1.16.2-13.el7.ppc64le.rpm libsss_nss_idmap-1.16.2-13.el7.ppc64le.rpm libsss_simpleifp-1.16.2-13.el7.ppc64le.rpm libsss_sudo-1.16.2-13.el7.ppc64le.rpm python-libipa_hbac-1.16.2-13.el7.ppc64le.rpm python-sss-1.16.2-13.el7.ppc64le.rpm python-sss-murmur-1.16.2-13.el7.ppc64le.rpm sssd-1.16.2-13.el7.ppc64le.rpm sssd-ad-1.16.2-13.el7.ppc64le.rpm sssd-client-1.16.2-13.el7.ppc64le.rpm sssd-common-1.16.2-13.el7.ppc64le.rpm sssd-common-pac-1.16.2-13.el7.ppc64le.rpm sssd-dbus-1.16.2-13.el7.ppc64le.rpm sssd-debuginfo-1.16.2-13.el7.ppc64le.rpm sssd-ipa-1.16.2-13.el7.ppc64le.rpm sssd-kcm-1.16.2-13.el7.ppc64le.rpm sssd-krb5-1.16.2-13.el7.ppc64le.rpm sssd-krb5-common-1.16.2-13.el7.ppc64le.rpm sssd-ldap-1.16.2-13.el7.ppc64le.rpm sssd-libwbclient-1.16.2-13.el7.ppc64le.rpm sssd-polkit-rules-1.16.2-13.el7.ppc64le.rpm sssd-proxy-1.16.2-13.el7.ppc64le.rpm sssd-tools-1.16.2-13.el7.ppc64le.rpm sssd-winbind-idmap-1.16.2-13.el7.ppc64le.rpm s390x: libipa_hbac-1.16.2-13.el7.s390.rpm libipa_hbac-1.16.2-13.el7.s390x.rpm libsss_autofs-1.16.2-13.el7.s390x.rpm libsss_certmap-1.16.2-13.el7.s390.rpm libsss_certmap-1.16.2-13.el7.s390x.rpm libsss_idmap-1.16.2-13.el7.s390.rpm libsss_idmap-1.16.2-13.el7.s390x.rpm libsss_nss_idmap-1.16.2-13.el7.s390.rpm libsss_nss_idmap-1.16.2-13.el7.s390x.rpm libsss_simpleifp-1.16.2-13.el7.s390.rpm libsss_simpleifp-1.16.2-13.el7.s390x.rpm libsss_sudo-1.16.2-13.el7.s390x.rpm python-libipa_hbac-1.16.2-13.el7.s390x.rpm python-sss-1.16.2-13.el7.s390x.rpm python-sss-murmur-1.16.2-13.el7.s390x.rpm sssd-1.16.2-13.el7.s390x.rpm sssd-ad-1.16.2-13.el7.s390x.rpm sssd-client-1.16.2-13.el7.s390.rpm sssd-client-1.16.2-13.el7.s390x.rpm sssd-common-1.16.2-13.el7.s390x.rpm sssd-common-pac-1.16.2-13.el7.s390x.rpm sssd-dbus-1.16.2-13.el7.s390x.rpm sssd-debuginfo-1.16.2-13.el7.s390.rpm sssd-debuginfo-1.16.2-13.el7.s390x.rpm sssd-ipa-1.16.2-13.el7.s390x.rpm sssd-kcm-1.16.2-13.el7.s390x.rpm sssd-krb5-1.16.2-13.el7.s390x.rpm sssd-krb5-common-1.16.2-13.el7.s390x.rpm sssd-ldap-1.16.2-13.el7.s390x.rpm sssd-libwbclient-1.16.2-13.el7.s390x.rpm sssd-polkit-rules-1.16.2-13.el7.s390x.rpm sssd-proxy-1.16.2-13.el7.s390x.rpm sssd-tools-1.16.2-13.el7.s390x.rpm sssd-winbind-idmap-1.16.2-13.el7.s390x.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v.7): aarch64: libipa_hbac-devel-1.16.2-13.el7.aarch64.rpm libsss_certmap-devel-1.16.2-13.el7.aarch64.rpm libsss_idmap-devel-1.16.2-13.el7.aarch64.rpm libsss_nss_idmap-devel-1.16.2-13.el7.aarch64.rpm libsss_simpleifp-devel-1.16.2-13.el7.aarch64.rpm sssd-debuginfo-1.16.2-13.el7.aarch64.rpm sssd-libwbclient-devel-1.16.2-13.el7.aarch64.rpm ppc64le: libipa_hbac-devel-1.16.2-13.el7.ppc64le.rpm libsss_certmap-devel-1.16.2-13.el7.ppc64le.rpm libsss_idmap-devel-1.16.2-13.el7.ppc64le.rpm libsss_nss_idmap-devel-1.16.2-13.el7.ppc64le.rpm libsss_simpleifp-devel-1.16.2-13.el7.ppc64le.rpm python-libsss_nss_idmap-1.16.2-13.el7.ppc64le.rpm sssd-debuginfo-1.16.2-13.el7.ppc64le.rpm sssd-libwbclient-devel-1.16.2-13.el7.ppc64le.rpm s390x: libipa_hbac-devel-1.16.2-13.el7.s390.rpm libipa_hbac-devel-1.16.2-13.el7.s390x.rpm libsss_certmap-devel-1.16.2-13.el7.s390.rpm libsss_certmap-devel-1.16.2-13.el7.s390x.rpm libsss_idmap-devel-1.16.2-13.el7.s390.rpm libsss_idmap-devel-1.16.2-13.el7.s390x.rpm libsss_nss_idmap-devel-1.16.2-13.el7.s390.rpm libsss_nss_idmap-devel-1.16.2-13.el7.s390x.rpm libsss_simpleifp-devel-1.16.2-13.el7.s390.rpm libsss_simpleifp-devel-1.16.2-13.el7.s390x.rpm python-libsss_nss_idmap-1.16.2-13.el7.s390x.rpm sssd-debuginfo-1.16.2-13.el7.s390.rpm sssd-debuginfo-1.16.2-13.el7.s390x.rpm sssd-libwbclient-devel-1.16.2-13.el7.s390.rpm sssd-libwbclient-devel-1.16.2-13.el7.s390x.rpm Red Hat Enterprise Linux Server Optional (v.7): ppc64: libipa_hbac-devel-1.16.2-13.el7.ppc.rpm libipa_hbac-devel-1.16.2-13.el7.ppc64.rpm libsss_certmap-devel-1.16.2-13.el7.ppc.rpm libsss_certmap-devel-1.16.2-13.el7.ppc64.rpm libsss_idmap-devel-1.16.2-13.el7.ppc.rpm libsss_idmap-devel-1.16.2-13.el7.ppc64.rpm libsss_nss_idmap-devel-1.16.2-13.el7.ppc.rpm libsss_nss_idmap-devel-1.16.2-13.el7.ppc64.rpm libsss_simpleifp-devel-1.16.2-13.el7.ppc.rpm libsss_simpleifp-devel-1.16.2-13.el7.ppc64.rpm python-libsss_nss_idmap-1.16.2-13.el7.ppc64.rpm sssd-debuginfo-1.16.2-13.el7.ppc.rpm sssd-debuginfo-1.16.2-13.el7.ppc64.rpm sssd-libwbclient-devel-1.16.2-13.el7.ppc.rpm sssd-libwbclient-devel-1.16.2-13.el7.ppc64.rpm ppc64le: libipa_hbac-devel-1.16.2-13.el7.ppc64le.rpm libsss_certmap-devel-1.16.2-13.el7.ppc64le.rpm libsss_idmap-devel-1.16.2-13.el7.ppc64le.rpm libsss_nss_idmap-devel-1.16.2-13.el7.ppc64le.rpm libsss_simpleifp-devel-1.16.2-13.el7.ppc64le.rpm python-libsss_nss_idmap-1.16.2-13.el7.ppc64le.rpm sssd-debuginfo-1.16.2-13.el7.ppc64le.rpm sssd-libwbclient-devel-1.16.2-13.el7.ppc64le.rpm s390x: libipa_hbac-devel-1.16.2-13.el7.s390.rpm libipa_hbac-devel-1.16.2-13.el7.s390x.rpm libsss_certmap-devel-1.16.2-13.el7.s390.rpm libsss_certmap-devel-1.16.2-13.el7.s390x.rpm libsss_idmap-devel-1.16.2-13.el7.s390.rpm libsss_idmap-devel-1.16.2-13.el7.s390x.rpm libsss_nss_idmap-devel-1.16.2-13.el7.s390.rpm libsss_nss_idmap-devel-1.16.2-13.el7.s390x.rpm libsss_simpleifp-devel-1.16.2-13.el7.s390.rpm libsss_simpleifp-devel-1.16.2-13.el7.s390x.rpm python-libsss_nss_idmap-1.16.2-13.el7.s390x.rpm sssd-debuginfo-1.16.2-13.el7.s390.rpm sssd-debuginfo-1.16.2-13.el7.s390x.rpm sssd-libwbclient-devel-1.16.2-13.el7.s390.rpm sssd-libwbclient-devel-1.16.2-13.el7.s390x.rpm x86_64: libipa_hbac-devel-1.16.2-13.el7.i686.rpm libipa_hbac-devel-1.16.2-13.el7.x86_64.rpm libsss_certmap-devel-1.16.2-13.el7.i686.rpm libsss_certmap-devel-1.16.2-13.el7.x86_64.rpm libsss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_nss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-devel-1.16.2-13.el7.i686.rpm libsss_simpleifp-devel-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-devel-1.16.2-13.el7.i686.rpm sssd-libwbclient-devel-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: sssd-1.16.2-13.el7.src.rpm noarch: python-sssdconfig-1.16.2-13.el7.noarch.rpm x86_64: libipa_hbac-1.16.2-13.el7.i686.rpm libipa_hbac-1.16.2-13.el7.x86_64.rpm libsss_autofs-1.16.2-13.el7.x86_64.rpm libsss_certmap-1.16.2-13.el7.i686.rpm libsss_certmap-1.16.2-13.el7.x86_64.rpm libsss_idmap-1.16.2-13.el7.i686.rpm libsss_idmap-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-1.16.2-13.el7.i686.rpm libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-1.16.2-13.el7.i686.rpm libsss_simpleifp-1.16.2-13.el7.x86_64.rpm libsss_sudo-1.16.2-13.el7.x86_64.rpm python-libipa_hbac-1.16.2-13.el7.x86_64.rpm python-libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm python-sss-1.16.2-13.el7.x86_64.rpm python-sss-murmur-1.16.2-13.el7.x86_64.rpm sssd-1.16.2-13.el7.x86_64.rpm sssd-ad-1.16.2-13.el7.x86_64.rpm sssd-client-1.16.2-13.el7.i686.rpm sssd-client-1.16.2-13.el7.x86_64.rpm sssd-common-1.16.2-13.el7.x86_64.rpm sssd-common-pac-1.16.2-13.el7.x86_64.rpm sssd-dbus-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-ipa-1.16.2-13.el7.x86_64.rpm sssd-kcm-1.16.2-13.el7.x86_64.rpm sssd-krb5-1.16.2-13.el7.x86_64.rpm sssd-krb5-common-1.16.2-13.el7.x86_64.rpm sssd-ldap-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-1.16.2-13.el7.x86_64.rpm sssd-polkit-rules-1.16.2-13.el7.x86_64.rpm sssd-proxy-1.16.2-13.el7.x86_64.rpm sssd-tools-1.16.2-13.el7.x86_64.rpm sssd-winbind-idmap-1.16.2-13.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v.7): x86_64: libipa_hbac-devel-1.16.2-13.el7.i686.rpm libipa_hbac-devel-1.16.2-13.el7.x86_64.rpm libsss_certmap-devel-1.16.2-13.el7.i686.rpm libsss_certmap-devel-1.16.2-13.el7.x86_64.rpm libsss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_nss_idmap-devel-1.16.2-13.el7.i686.rpm libsss_nss_idmap-devel-1.16.2-13.el7.x86_64.rpm libsss_simpleifp-devel-1.16.2-13.el7.i686.rpm libsss_simpleifp-devel-1.16.2-13.el7.x86_64.rpm sssd-debuginfo-1.16.2-13.el7.i686.rpm sssd-debuginfo-1.16.2-13.el7.x86_64.rpm sssd-libwbclient-devel-1.16.2-13.el7.i686.rpm sssd-libwbclient-devel-1.16.2-13.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-10852 https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.6_release_notes/index 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBW9gQBtzjgjWX9erEAQhoAA//Vw3B6wv0aGX7sbWYPV4bx67Fl1BokDZq jBmYEhwGV3MKd+3nP7l+eA+uAPW689eHhksFT6RQPB0NJCOAp8/x1UKLbC47zQQp IEIvwkSbCohJYlhNE7fpJ5a5A7p1BXfgLv+HKOAnujY+QsaW5bAhqf3MCAe9U+E0 mykM+G/fmoS09v8PC+CQxUDH8x+eaixHGjqyGjvmgYlMDjRrr5ZzFz53gMy5dkLN vPJ3x4qPTgsjTqs2MgtOtU4qWXKIzCYHZCQwEBB4S6sJl1vmR51guMpZhHa+QYEU qw0JM0nlGT2jwT5O5IXMa2AdTIseuvJp8liWEtRuHPtxLIVu+THY3ft+zRIhl4Uw JHxL8FCyt4uatqT5kmqPpUHG09eC2UXG9IJmKZF1SZoufNGN3pi0b44o8COSEH1t Dp2eOpWfl1HoTd0V3c5M0djAtk4qT2R/z403FLj89XmkniBlU2PtlqJJLyK9rnwO LGv1WyDdWIfNfeVUu0Vuld5VlLqwNV5u0cqtaR8a2n+o/Y3rQv9HkEH7yAcCiGJv NRjA/N0nt6MtIsgl/ZiOKevDAvL58p9Ia1dcFIlAcaRU160AMsc71qyWacskn7bI CN6a5HsqpdDLrXmfQZSfONAiq5lvrfwvEMBWKU7GZdvJ/NKtqAgpUUADurS62RmO 0EJu80uo4cs=Hg2/ -----END PGP SIGNATURE----- -- RHSA-announce mailinglist
Oct 30, 2018
•Low
Red Hat
89
security advisoryupdateFedoraFedora 21 SSSD: Security Advisory for Memory Leak Issue
Security fix for CVE-2015-5292. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-cdea5324a8 2015-10-19 21:31:52.153973 -------------------------------------------------------------------------------- Name : sssd Product : Fedora 21 Version : 1.12.5 Release : 4.fc21 URL : https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement Summary : System Security Services Daemon Description : Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a plug-gable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA. The sssd sub-package is a meta-package that contains the daemon as well as all the existing back ends. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-5292 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1267580 - CVE-2015-5292 sssd: memory leak in the sssd_pac_plugin https://bugzilla.redhat.com/show_bug.cgi?id=1267580 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update sssd' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Oct 20, 2015
•Critical
Fedora
98
security advisorybug fixRed Hat Enterprise LinuxRed Hat Enterprise Linux 5 RHSA-2011:0975-01 Low: SSSD Update Management
Updated sssd packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Low: sssd security, bug fix, and enhancement update Advisory ID: RHSA-2011:0975-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:0975.html Issue date: 2011-07-21 CVE Names: CVE-2010-4341 ==================================================================== 1. Summary: Updated sssd packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: The System Security Services Daemon (SSSD) provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects such as FreeIPA. A flaw was found in the SSSD PAM responder that could allow a local attacker to force SSSD to enter an infinite loop via a carefully-crafted packet. With SSSD unresponsive, legitimate users could be denied the ability to log in to the system. (CVE-2010-4341) Red Hatwould like to thank Sebastian Krahmer for reporting this issue. These updated sssd packages include a number of bug fixes and enhancements. Space precludes documenting all of these changes in this advisory. Refer to the Red Hat Enterprise Linux 5.7 Technical Notes for information about these changes: https://access.redhat.com/search/ nical_Notes/sssd.html#RHSA-2011-0975 All sssd users are advised to upgrade to these updated sssd packages, which upgrade SSSD to upstream version 1.5.1 to correct this issue, and fix the bugs and add the enhancements noted in the Technical Notes. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 640601 - sssd is not escaping correctly LDAP searches 661163 - CVE-2010-4341 sssd: DoS in sssd PAM responder can prevent logins 675007 - sssd corrupts group cache 676027 - sssd segfault when first entry of ldap_uri is unreachable 678032 - Remove HBAC time rules from SSSD 678092 - SSSD in 5.6 can not locate HBAC rules from FreeIPAv2 678412 - name service caches names, so id command shows recently deleted users678606 - User information not updated on login for secondary domains 678615 - SSSD needs to look at IPA's compat tree for netgroups 678778 - IPA provider does not update removed group memberships on initgroups 678780 - sssd crashes at the next tgt renewals it tries. 679087 - SSSD IPA provider should honor the krb5_realm option 679097 - Does not read renewable ccache at startup. 682803 - sssd-be segmentation fault - ipa-client on ipa-server 682808 - sssd_nss core dumps with certain lookups 682853 - IPA provider should use realm instead of ipa_domain for base DN 683260 - sudo/ldap lookup via sssd gets stuck for 5min waiting on netgroup 688677 - Build SSSD in RHEL 5.7 againstopenldap24-libs 688694 - authconfig fails when access_provider is set as krb5 in sssd.conf. 688697 - sssd 1.5.1-9 breaks AD authentication 689887 - group memberships are not populated correctly during IPA provider initgroups 690093 - multiple problems with sssd + ldap (Active-Directory) and groups members. 690096 - SSSD should skip over groups with multiple names 690287 - Traceback messages seen while interrupting sss_obfuscate using ctrl+d. 690814 - [abrt] sssd-1.2.1-28.el6_0.4: _talloc_free: Process /usr/libexec/sssd/sssd_be was killed by signal 11 (SIGSEGV) 690867 - Groups with a zero-length memberuid attribute can cause SSSD to stop caching and responding to requests 691900 - SSSD needs to fall back to 'cn' for GECOS information (was: SSSD configuration problem when configured with MSAD) 692960 - Process /usr/libexec/sssd/sssd_be was killed by signal 11 (SIGSEGV) 694149 - SSSD consumes GBs of RAM, possible memory leak 694853 - SSSD crashes during getent when anonymous bind is disabled. 695476 - Unable to resolve SRV record when called with _srv_, in ldap_uri 696979 - [REGRESSION] Filters not honoured against fully-qualified users. 701702 - sssd client libraries use select() but should use poll() instead 707340 - latest sssd fails if ldap_default_authtok_type is not mentioned 707574 - SSSD's async resolver only tries the first nameserver in /etc/resolv.conf 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: sssd-1.5.1-37.el5.i386.rpm sssd-client-1.5.1-37.el5.i386.rpm sssd-debuginfo-1.5.1-37.el5.i386.rpm sssd-tools-1.5.1-37.el5.i386.rpm x86_64: sssd-1.5.1-37.el5.x86_64.rpm sssd-client-1.5.1-37.el5.i386.rpm sssd-client-1.5.1-37.el5.x86_64.rpm sssd-debuginfo-1.5.1-37.el5.i386.rpm sssd-debuginfo-1.5.1-37.el5.x86_64.rpm sssd-tools-1.5.1-37.el5.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: sssd-1.5.1-37.el5.i386.rpm sssd-client-1.5.1-37.el5.i386.rpm sssd-debuginfo-1.5.1-37.el5.i386.rpm sssd-tools-1.5.1-37.el5.i386.rpm ia64: sssd-1.5.1-37.el5.ia64.rpm sssd-client-1.5.1-37.el5.i386.rpm sssd-client-1.5.1-37.el5.ia64.rpm sssd-debuginfo-1.5.1-37.el5.i386.rpm sssd-debuginfo-1.5.1-37.el5.ia64.rpm sssd-tools-1.5.1-37.el5.ia64.rpm ppc: sssd-1.5.1-37.el5.ppc.rpm sssd-client-1.5.1-37.el5.ppc.rpm sssd-client-1.5.1-37.el5.ppc64.rpm sssd-debuginfo-1.5.1-37.el5.ppc.rpm sssd-debuginfo-1.5.1-37.el5.ppc64.rpm sssd-tools-1.5.1-37.el5.ppc.rpm s390x: sssd-1.5.1-37.el5.s390x.rpm sssd-client-1.5.1-37.el5.s390.rpm sssd-client-1.5.1-37.el5.s390x.rpm sssd-debuginfo-1.5.1-37.el5.s390.rpm sssd-debuginfo-1.5.1-37.el5.s390x.rpm sssd-tools-1.5.1-37.el5.s390x.rpm x86_64: sssd-1.5.1-37.el5.x86_64.rpm sssd-client-1.5.1-37.el5.i386.rpm sssd-client-1.5.1-37.el5.x86_64.rpm sssd-debuginfo-1.5.1-37.el5.i386.rpm sssd-debuginfo-1.5.1-37.el5.x86_64.rpm sssd-tools-1.5.1-37.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2010-4341 https://access.redhat.com/security/updates/classification#low https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement https://access.redhat.com/search/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2011 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFOKCjwXlSAg2UNWIIRAp1QAJ48+Zo46ncYENnEBVbZIzUvJIL+WgCgpSjL 85yR3jufQeBeq/Pqee04GX8=dZbV -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Jul 21, 2011
•Low
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!