SUSE-SU-2019:0081-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:0081-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2019:0081-1
- Related
- Published
- 2019-01-11T16:06:47Z
- Modified
- 2019-01-11T16:06:47Z
- Summary
- Security update for sssd
- Details
-
This update for sssd provides the following fixes:
This security issue was fixed:
- CVE-2018-10852: Set stricter permissions on /var/lib/sss/pipes/sudo to prevent the disclosure of sudo rules for arbitrary users (bsc#1098377)
These non-security issues were fixed:
- Fix a segmentation fault in sss_cache command. (bsc#1072728)
- Fix a failure in autofs initialisation sequence upon system boot. (bsc#1010700)
- Fix race condition on boot between SSSD and autofs. (bsc#1010700)
- Fix a bug where file descriptors were not closed (bsc#1080156)
- Fix an issue where sssd logs were not rotated properly (bsc#1080156)
- Remove whitespaces from netgroup entries (bsc#1087320)
- Remove misleading log messages (bsc#1101877)
- exit() the forked process if exec()-ing a child process fails (bsc#1110299)
- Do not schedule the machine renewal task if adcli is not executable (bsc#1110299)
- References
-
- https://www.suse.com/support/update/announcement/2019/suse-su-20190081-1/
- https://bugzilla.suse.com/1010700
- https://bugzilla.suse.com/1072728
- https://bugzilla.suse.com/1080156
- https://bugzilla.suse.com/1087320
- https://bugzilla.suse.com/1098377
- https://bugzilla.suse.com/1101877
- https://bugzilla.suse.com/1110299
- https://www.suse.com/security/cve/CVE-2018-10852
Affected packages
SUSE:OpenStack Cloud 7 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20OpenStack%20Cloud%207
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1"
}
]
}
SUSE:Linux Enterprise Desktop 12 SP3 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"libsss_nss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 12 SP2 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1"
}
]
}
SUSE:Linux Enterprise Software Development Kit 12 SP3 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
SUSE:Linux Enterprise Server 12 SP2-LTSS / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP3 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"libsss_nss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 12 SP3 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"libsss_nss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1"
}
]
}
SUSE:Enterprise Storage 4 / sssd
Package
- Name
- sssd
- Purl
- purl:rpm/suse/sssd&distro=SUSE%20Enterprise%20Storage%204
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.4-34.23.1
Ecosystem specific
{
"binaries": [
{
"sssd-krb5": "1.13.4-34.23.1",
"sssd-ldap": "1.13.4-34.23.1",
"libsss_sudo": "1.13.4-34.23.1",
"sssd-ad": "1.13.4-34.23.1",
"python-sssd-config": "1.13.4-34.23.1",
"sssd": "1.13.4-34.23.1",
"libsss_idmap0": "1.13.4-34.23.1",
"sssd-ipa": "1.13.4-34.23.1",
"sssd-32bit": "1.13.4-34.23.1",
"sssd-proxy": "1.13.4-34.23.1",
"sssd-krb5-common": "1.13.4-34.23.1",
"sssd-tools": "1.13.4-34.23.1",
"libipa_hbac0": "1.13.4-34.23.1"
}
]
}