Download
| Alert*
|
oval:org.secpod.oval:def:89045574
libsss_nss_idmap-devel is installed oval:org.secpod.oval:def:89050592 This update for sssd fixes the following issues: Security vulnerability addresed: - CVE-2019-3811: Fix fallback_homedir returning "/" for empty home directories Other bug fixes and changes: - Install logrotate configuration - Align systemd service file with upstream, run interactive and change ser ... oval:org.secpod.oval:def:89050804 This update for sssd fixes the following issues: Security issue fixed: - CVE-2018-16838: Fixed an authentication bypass related to the Group Policy Objects implementation . Non-security issues fixed: - Allow defaults sudoRole without sudoUser attribute - Missing GPOs directory could have led to log ... oval:org.secpod.oval:def:89048188 This update for sssd fixes the following issues: - CVE-2022-4254: Fixed a bug in libsss_certmap which could allow an attacker to gain control of the admin account and perform a full domain takeover oval:org.secpod.oval:def:89049599 This update for sssd fixes the following security issue: - CVE-2018-10852: Set stricter permissions on /var/lib/sss/pipes/sudo to prevent the disclosure of sudo rules for arbitrary users . oval:org.secpod.oval:def:89047646 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommand . - Add "ldap_ignore_unreadable_references" parameter to skip unreadable objects referenced by "member" attributte - Fix 32-bit libraries package. ... oval:org.secpod.oval:def:89045572 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands . oval:org.secpod.oval:def:89047200 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands . - Add LDAPS support for the AD provider . - Improve logs to record the reason why internal watchdog terminates a process . - Fix watchdog not te ... oval:org.secpod.oval:def:3301297 SUSE Security Update: Security update for sssd oval:org.secpod.oval:def:89047488 - CVE-2021-44141: Information leak via symlinks of existance of files or directories outside of the exported share; ; ; - CVE-2021-44142: Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution; ; ; - CVE-2022-0336: Samba AD users with permission to write to an acco ... oval:org.secpod.oval:def:2600601 The System Security Services Daemon service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch and the Pluggable Authentication Modules interfaces toward the system, and a pluggable back-end system to connect to ... oval:org.secpod.oval:def:3302581 Security update for sssd oval:org.secpod.oval:def:89051855 This update for sssd fixes the following issues: * CVE-2023-3758: Fixed race condition during authorization that lead to GPO policies functioning inconsistently oval:org.secpod.oval:def:89051853 This update for sssd fixes the following issues: * CVE-2023-3758: Fixed race condition during authorization that lead to GPO policies functioning inconsistently oval:org.secpod.oval:def:3302555 Security update for sssd oval:org.secpod.oval:def:89051854 This update for sssd fixes the following issues: * CVE-2023-3758: Fixed race condition during authorization that lead to GPO policies functioning inconsistently oval:org.secpod.oval:def:89051848 This update for sssd fixes the following issues: * CVE-2023-3758: Fixed race condition during authorization that lead to GPO policies functioning inconsistently |
