Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2013-0663

Опубликовано: 19 мар. 2013
Источник: oracle-oval
Платформа: Oracle Linux 6

Описание

ELSA-2013-0663: sssd security and bug fix update (MODERATE)

[1.9.2-82.4]

  • Resolves: rhbz#911298 - sssd: simple access provider flaw prevents intended ACL use when client to an AD provider

[1.9.2-82.3]

  • Fix pwd_expiration_warning=0
  • Resolves: rhbz#914671 - pwd_expiration_warning has wrong default for Kerberos

[1.9.2-82.2]

  • Resolves: rhbz#914671 - pwd_expiration_warning has wrong default for Kerberos
  • Fix the NVR

[1.9.2-82.1]

  • Resolves: rhbz#907362 - Serious performance regression in sssd

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

libipa_hbac

1.9.2-82.4.el6_4

libipa_hbac-devel

1.9.2-82.4.el6_4

libipa_hbac-python

1.9.2-82.4.el6_4

libsss_autofs

1.9.2-82.4.el6_4

libsss_idmap

1.9.2-82.4.el6_4

libsss_idmap-devel

1.9.2-82.4.el6_4

libsss_sudo

1.9.2-82.4.el6_4

libsss_sudo-devel

1.9.2-82.4.el6_4

sssd

1.9.2-82.4.el6_4

sssd-client

1.9.2-82.4.el6_4

sssd-tools

1.9.2-82.4.el6_4

Oracle Linux i686

libipa_hbac

1.9.2-82.4.el6_4

libipa_hbac-devel

1.9.2-82.4.el6_4

libipa_hbac-python

1.9.2-82.4.el6_4

libsss_autofs

1.9.2-82.4.el6_4

libsss_idmap

1.9.2-82.4.el6_4

libsss_idmap-devel

1.9.2-82.4.el6_4

libsss_sudo

1.9.2-82.4.el6_4

libsss_sudo-devel

1.9.2-82.4.el6_4

sssd

1.9.2-82.4.el6_4

sssd-client

1.9.2-82.4.el6_4

sssd-tools

1.9.2-82.4.el6_4

Связанные CVE

CVE-2013-0287

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2013-0287

ubuntu
больше 12 лет назад

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended access restrictions.

redhat логотип

CVE-2013-0287

redhat
больше 12 лет назад

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended access restrictions.

nvd логотип

CVE-2013-0287

nvd
больше 12 лет назад

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended access restrictions.

debian логотип

CVE-2013-0287

debian
больше 12 лет назад

The Simple Access Provider in System Security Services Daemon (SSSD) 1 ...

github логотип

GHSA-h53f-x74p-cc2v

github
больше 3 лет назад

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended access restrictions.