Security update for sssd
This update for sssd fixes one security issue and three bugs.
The following vulnerability was fixed:
- CVE-2014-0249: Incorrect expansion of group membership when encountering a non-POSIX group.
(bsc#880245)
The following non-security fixes were also included:
- Prevent crashes of statically linked binaries using getpwuid when sssd is used and nscd is
turned off or has caching disabled. (bsc#993582)
- Add logrotate configuration to prevent log files from growing too large when running with
debug mode enabled. (bsc#1004220)
- Order sudo rules by the same logic used by the native LDAP support from sudo. (bsc#1002973)
This update was imported from the SUSE:SLE-12-SP1:Update update project.
- Submitted by Howard Guo (guohouzuo)
Fixed bugs
bnc#1004220
sssd missing logrotate
bnc#880245
VUL-1: CVE-2014-0249: sssd: incorrect expansion of group membership when encountering a non-POSIX group
bnc#993582
L3: statically compiled binary crashes when loading libpthread
bnc#1002973
L3-Question: sssd sudoOrder not honored as expected