File _patchinfo of Package patchinfo.6481

<patchinfo incident="6481">
  <issue id="2018-10852" tracker="cve" />
  <issue id="1098377" tracker="bnc">VUL-0: CVE-2018-10852: sssd: sudo rule disclosure</issue>
  <issue id="1010700" tracker="bnc">autofs fails to start</issue>
  <issue id="1072728" tracker="bnc">L3: segfault in sss_cache</issue>
  <issue id="1080156" tracker="bnc">L3-Question: SSSD files are not closed when sending HUP or SIGHUP.</issue>
  <issue id="1087320" tracker="bnc">sssd: whitespaces are not removed from netgroup entries</issue>
  <issue id="1101877" tracker="bnc">sssd: missleading log messages fillup logs</issue>
  <issue id="1110299" tracker="bnc">sssd_be doesn't terminate forked child, a large number of sssd causing 100% / full</issue>
  <category>security</category>
  <rating>moderate</rating>
  <packager>guohouzuo</packager>
  <description>This update for sssd provides the following fixes:

This security issue was fixed:

- CVE-2018-10852: Set stricter permissions on /var/lib/sss/pipes/sudo to prevent the disclosure of sudo rules for arbitrary users (bsc#1098377)

These non-security issues were fixed:

- Fix a segmentation fault in sss_cache command. (bsc#1072728)
- Fix a failure in autofs initialisation sequence upon system boot. (bsc#1010700)
- Fix race condition on boot between SSSD and autofs. (bsc#1010700)
- Fix a bug where file descriptors were not closed (bsc#1080156)
- Fix an issue where sssd logs were not rotated properly (bsc#1080156)
- Remove whitespaces from netgroup entries (bsc#1087320)
- Remove misleading log messages (bsc#1101877)
- exit() the forked process if exec()-ing a child process fails (bsc#1110299)
- Do not schedule the machine renewal task if adcli is not executable (bsc#1110299)
</description>
  <summary>Security update for sssd</summary>
</patchinfo>