Security update for sssd
This update for sssd provides the following fixes:
Security issues fixed:
- CVE-2017-12173: Fixed unsanitized input when searching in local cache database (bsc#1061832).
Non security issues fixed:
- Fixed a segfault issue in ldap_rfc_2307_fallback_to_local_users. (bsc#1055123)
- Install /var/lib/sss/mc directory to correct sssd cache invalidation behaviour. (bsc#1039567)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
-
Submitted by
Howard Guo (guohouzuo)
Fixed bugs
bnc#1039567
sss_cache -U does not properly clear deleted users
bnc#1061832
VUL-0: sssd: CVE-2017-12173 sssd: unsanitized input when searching in local cache database
bnc#1055123
L3: SLES12 SP2: SSSD crashes, needs to be restarted. Will work for awhile but eventually crash again.
