SUSE-SU-2024:1549-1

Опубликовано: 07 мая 2024

Источник: suse-cvrf

Описание

Security update for sssd

This update for sssd fixes the following issues:

CVE-2023-3758: Fixed race condition during authorization that lead to GPO policies functioning inconsistently (bsc#1223100)

Список пакетов

SUSE Enterprise Storage 7.1

libipa_hbac-devel-1.16.1-150300.23.43.1

libipa_hbac0-1.16.1-150300.23.43.1

libsss_certmap-devel-1.16.1-150300.23.43.1

libsss_certmap0-1.16.1-150300.23.43.1

libsss_idmap-devel-1.16.1-150300.23.43.1

libsss_idmap0-1.16.1-150300.23.43.1

libsss_nss_idmap-devel-1.16.1-150300.23.43.1

libsss_nss_idmap0-1.16.1-150300.23.43.1

libsss_simpleifp-devel-1.16.1-150300.23.43.1

libsss_simpleifp0-1.16.1-150300.23.43.1

python3-sssd-config-1.16.1-150300.23.43.1

sssd-1.16.1-150300.23.43.1

sssd-ad-1.16.1-150300.23.43.1

sssd-common-1.16.1-150300.23.43.1

sssd-common-32bit-1.16.1-150300.23.43.1

sssd-dbus-1.16.1-150300.23.43.1

sssd-ipa-1.16.1-150300.23.43.1

sssd-krb5-1.16.1-150300.23.43.1

sssd-krb5-common-1.16.1-150300.23.43.1

sssd-ldap-1.16.1-150300.23.43.1

sssd-proxy-1.16.1-150300.23.43.1

sssd-tools-1.16.1-150300.23.43.1

sssd-winbind-idmap-1.16.1-150300.23.43.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

libipa_hbac-devel-1.16.1-150300.23.43.1

libipa_hbac0-1.16.1-150300.23.43.1

libsss_certmap-devel-1.16.1-150300.23.43.1

libsss_certmap0-1.16.1-150300.23.43.1

libsss_idmap-devel-1.16.1-150300.23.43.1

libsss_idmap0-1.16.1-150300.23.43.1

libsss_nss_idmap-devel-1.16.1-150300.23.43.1

libsss_nss_idmap0-1.16.1-150300.23.43.1

libsss_simpleifp-devel-1.16.1-150300.23.43.1

libsss_simpleifp0-1.16.1-150300.23.43.1

python3-sssd-config-1.16.1-150300.23.43.1

sssd-1.16.1-150300.23.43.1

sssd-ad-1.16.1-150300.23.43.1

sssd-common-1.16.1-150300.23.43.1

sssd-common-32bit-1.16.1-150300.23.43.1

sssd-dbus-1.16.1-150300.23.43.1

sssd-ipa-1.16.1-150300.23.43.1

sssd-krb5-1.16.1-150300.23.43.1

sssd-krb5-common-1.16.1-150300.23.43.1

sssd-ldap-1.16.1-150300.23.43.1

sssd-proxy-1.16.1-150300.23.43.1

sssd-tools-1.16.1-150300.23.43.1

sssd-winbind-idmap-1.16.1-150300.23.43.1

SUSE Linux Enterprise Micro 5.1

libsss_certmap0-1.16.1-150300.23.43.1

libsss_idmap0-1.16.1-150300.23.43.1

libsss_nss_idmap0-1.16.1-150300.23.43.1

sssd-1.16.1-150300.23.43.1

sssd-common-1.16.1-150300.23.43.1

sssd-krb5-common-1.16.1-150300.23.43.1

sssd-ldap-1.16.1-150300.23.43.1

SUSE Linux Enterprise Micro 5.2

libsss_certmap0-1.16.1-150300.23.43.1

libsss_idmap0-1.16.1-150300.23.43.1

libsss_nss_idmap0-1.16.1-150300.23.43.1

sssd-1.16.1-150300.23.43.1

sssd-common-1.16.1-150300.23.43.1

sssd-krb5-common-1.16.1-150300.23.43.1

sssd-ldap-1.16.1-150300.23.43.1

SUSE Linux Enterprise Server 15 SP3-LTSS

libipa_hbac-devel-1.16.1-150300.23.43.1

libipa_hbac0-1.16.1-150300.23.43.1

libsss_certmap-devel-1.16.1-150300.23.43.1

libsss_certmap0-1.16.1-150300.23.43.1

libsss_idmap-devel-1.16.1-150300.23.43.1

libsss_idmap0-1.16.1-150300.23.43.1

libsss_nss_idmap-devel-1.16.1-150300.23.43.1

libsss_nss_idmap0-1.16.1-150300.23.43.1

libsss_simpleifp-devel-1.16.1-150300.23.43.1

libsss_simpleifp0-1.16.1-150300.23.43.1

python3-sssd-config-1.16.1-150300.23.43.1

sssd-1.16.1-150300.23.43.1

sssd-ad-1.16.1-150300.23.43.1

sssd-common-1.16.1-150300.23.43.1

sssd-common-32bit-1.16.1-150300.23.43.1

sssd-dbus-1.16.1-150300.23.43.1

sssd-ipa-1.16.1-150300.23.43.1

sssd-krb5-1.16.1-150300.23.43.1

sssd-krb5-common-1.16.1-150300.23.43.1

sssd-ldap-1.16.1-150300.23.43.1

sssd-proxy-1.16.1-150300.23.43.1

sssd-tools-1.16.1-150300.23.43.1

sssd-winbind-idmap-1.16.1-150300.23.43.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

libipa_hbac-devel-1.16.1-150300.23.43.1

libipa_hbac0-1.16.1-150300.23.43.1

libsss_certmap-devel-1.16.1-150300.23.43.1

libsss_certmap0-1.16.1-150300.23.43.1

libsss_idmap-devel-1.16.1-150300.23.43.1

libsss_idmap0-1.16.1-150300.23.43.1

libsss_nss_idmap-devel-1.16.1-150300.23.43.1

libsss_nss_idmap0-1.16.1-150300.23.43.1

libsss_simpleifp-devel-1.16.1-150300.23.43.1

libsss_simpleifp0-1.16.1-150300.23.43.1

python3-sssd-config-1.16.1-150300.23.43.1

sssd-1.16.1-150300.23.43.1

sssd-ad-1.16.1-150300.23.43.1

sssd-common-1.16.1-150300.23.43.1

sssd-common-32bit-1.16.1-150300.23.43.1

sssd-dbus-1.16.1-150300.23.43.1

sssd-ipa-1.16.1-150300.23.43.1

sssd-krb5-1.16.1-150300.23.43.1

sssd-krb5-common-1.16.1-150300.23.43.1

sssd-ldap-1.16.1-150300.23.43.1

sssd-proxy-1.16.1-150300.23.43.1

sssd-tools-1.16.1-150300.23.43.1

sssd-winbind-idmap-1.16.1-150300.23.43.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20241549-1/
Link for SUSE-SU-2024:1549-1
https://lists.suse.com/pipermail/sle-updates/2024-May/035189.html
E-Mail link for SUSE-SU-2024:1549-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1223100
SUSE Bug 1223100
https://www.suse.com/security/cve/CVE-2023-3758/
SUSE CVE CVE-2023-3758 page

Описание

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.

Затронутые продукты

SUSE Enterprise Storage 7.1:libipa_hbac-devel-1.16.1-150300.23.43.1

SUSE Enterprise Storage 7.1:libipa_hbac0-1.16.1-150300.23.43.1

SUSE Enterprise Storage 7.1:libsss_certmap-devel-1.16.1-150300.23.43.1

SUSE Enterprise Storage 7.1:libsss_certmap0-1.16.1-150300.23.43.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-3758.html
CVE-2023-3758
https://bugzilla.suse.com/1223100
SUSE Bug 1223100

SUSE-SU-2024:1549-1

Описание

Список пакетов

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Micro 5.1

SUSE Linux Enterprise Micro 5.2

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP3

Ссылки

Уязвимость: CVE-2023-3758

Описание

Затронутые продукты

Ссылки