Описание
Security update for sssd
This update for sssd fixes the following issues:
Security vulnerability addresed:
- CVE-2019-3811: Fix fallback_homedir returning '/' for empty home directories (bsc#1121759)
Other bug fixes and changes:
- Install logrotate configuration (bsc#1004220)
- Align systemd service file with upstream, run interactive and change service type to notify (bsc#1120852)
- Fix sssd not starting in foreground mode (bsc#1125277)
- Strip whitespaces in netgroup triples (bsc#1087320)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15
libipa_hbac-devel-1.16.1-3.15.1
libipa_hbac0-1.16.1-3.15.1
libsss_certmap-devel-1.16.1-3.15.1
libsss_certmap0-1.16.1-3.15.1
libsss_idmap-devel-1.16.1-3.15.1
libsss_idmap0-1.16.1-3.15.1
libsss_nss_idmap-devel-1.16.1-3.15.1
libsss_nss_idmap0-1.16.1-3.15.1
libsss_simpleifp-devel-1.16.1-3.15.1
libsss_simpleifp0-1.16.1-3.15.1
python3-sssd-config-1.16.1-3.15.1
sssd-1.16.1-3.15.1
sssd-32bit-1.16.1-3.15.1
sssd-ad-1.16.1-3.15.1
sssd-dbus-1.16.1-3.15.1
sssd-ipa-1.16.1-3.15.1
sssd-krb5-1.16.1-3.15.1
sssd-krb5-common-1.16.1-3.15.1
sssd-ldap-1.16.1-3.15.1
sssd-proxy-1.16.1-3.15.1
sssd-tools-1.16.1-3.15.1
sssd-wbclient-1.16.1-3.15.1
sssd-wbclient-devel-1.16.1-3.15.1
Ссылки
- Link for SUSE-SU-2019:0542-1
- E-Mail link for SUSE-SU-2019:0542-1
- SUSE Security Ratings
- SUSE Bug 1004220
- SUSE Bug 1087320
- SUSE Bug 1120852
- SUSE Bug 1121759
- SUSE Bug 1125277
- SUSE CVE CVE-2019-3811 page
Описание
A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions before 2.1 are vulnerable.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15:libipa_hbac-devel-1.16.1-3.15.1
SUSE Linux Enterprise Module for Basesystem 15:libipa_hbac0-1.16.1-3.15.1
SUSE Linux Enterprise Module for Basesystem 15:libsss_certmap-devel-1.16.1-3.15.1
SUSE Linux Enterprise Module for Basesystem 15:libsss_certmap0-1.16.1-3.15.1
Ссылки
- CVE-2019-3811
- SUSE Bug 1121759