sssd: fixed some access control management issues
When SSSD is configured as an Active Directory client by using the
new Active Directory provider or equivalent configuration of the LDAP
provider, the Simple Access Provider does not handle access control
correctly. If any groups are specified with the simple_deny_groups
option, the group members are permitted access. (CVE-2013-0287)
-
Submitted by
Ralf Haferkamp (rhafer)
Fixed bugs
bnc#809153
VUL-0: CVE-2013-0287: sssd: simple access provider flaw prevents intended ACL use when client to an AD provider
