Download
| Alert*
oval:org.secpod.oval:def:1601065
A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users to login instead of denying access.A vulnerability was found in sssd where, if a user was configured ... oval:org.secpod.oval:def:89044005 This update for adcli and sssd provides the following improvement: Security vulnerability fixed: - CVE-2019-3811: Fix fallback_homedir returning "/" for empty home directories Other fixes: - Add an option to disable checking for trusted domains in the subdomains provider - Clear pid file in corner ... oval:org.secpod.oval:def:89003292 This update for sssd fixes the following issues: Security vulnerabilities addressed: - Fix fallback_homedir returning "/" for empty home directories - Create sockets with right permissions Other bug fixes and changes: - Install logrotate configuration - Strip whitespaces in netgroup triples - A ... oval:org.secpod.oval:def:89050592 This update for sssd fixes the following issues: Security vulnerability addresed: - CVE-2019-3811: Fix fallback_homedir returning "/" for empty home directories Other bug fixes and changes: - Install logrotate configuration - Align systemd service file with upstream, run interactive and change ser ... oval:org.secpod.oval:def:503262 The System Security Services Daemon service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch and the Pluggable Authentication Modules interfaces toward the system, and a pluggable back-end system to connect to ... oval:org.secpod.oval:def:1900028 A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return "/" instead of "". This could impact services that restrict the user"s filesystem access to within their home directory through chroot etc. All versions before 2.1 are vulnerable. oval:org.secpod.oval:def:1504283 [1.16.4-21] - Resolves: rhbz#1714952 - [sssd] RHEL 7.7 Tier 0 Localization - Rebuild japanese gmo file explicitly [1.16.4-20] - Resolves: rhbz#1714952 - [sssd] RHEL 7.7 Tier 0 Localization [1.16.4-19] - Resolves: rhbz#1707959 - sssd does not properly check GSS-SPNEGO [1.16.4-18] - Resolves: rhbz#171 ... oval:org.secpod.oval:def:205300 The System Security Services Daemon service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch and the Pluggable Authentication Modules interfaces toward the system, and a pluggable back-end system to connect to ... oval:org.secpod.oval:def:1700255 A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users to login instead of denying access.A vulnerability was found in sssd where, if a user was configured ... oval:org.secpod.oval:def:2000960 A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return "/" instead of "" . This could impact services that restrict the user"s filesystem access to within their home directory through chroot etc. All versions before 2.1 are vulnerable. oval:org.secpod.oval:def:706127 sssd: System Security Services Daemon Several security issues were fixed in sssd. oval:org.secpod.oval:def:75915 sssd: System Security Services Daemon Several security issues were fixed in sssd. |