File _patchinfo of Package patchinfo.10387

<patchinfo incident="10387">
  <issue tracker="bnc" id="1004220">sssd missing logrotate</issue>
  <issue tracker="bnc" id="1121759">VUL-1: CVE-2019-3811: sssd: fallback_homedir returns '/' for empty home directories in passwd file</issue>
  <issue tracker="bnc" id="1087320">sssd: whitespaces are not removed from netgroup entries</issue>
  <issue tracker="bnc" id="1098377">VUL-0: CVE-2018-10852: sssd: sudo rule disclosure</issue>
  <issue tracker="bnc" id="1120852">SSSD may have incorrect service type</issue>
  <issue tracker="cve" id="2018-10852"/>
  <issue tracker="cve" id="2019-3811"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>scabrero</packager>
  <description>This update for sssd fixes the following issues:

Security vulnerabilities addressed:

- Fix fallback_homedir returning '/' for empty home directories
  (CVE-2019-3811) (bsc#1121759)
- Create sockets with right permissions (bsc#1098377, CVE-2018-10852)

Other bug fixes and changes:

- Install logrotate configuration (bsc#1004220)
- Strip whitespaces in netgroup triples (bsc#1087320)
- Align systemd service file with upstream
  * Run interactive and change service type to notify (bsc#1120852)
  * Replace deprecated '-f' and use '--logger'
</description>
  <summary>Security update for sssd</summary>
</patchinfo>