Overview

File _patchinfo of Package patchinfo.23003

<patchinfo incident="23003">
  <issue tracker="cve" id="2021-3621"/>
  <issue tracker="bnc" id="1189492">VUL-0: CVE-2021-3621: sssd: shell command injection in sssctl</issue>
  <issue tracker="bnc" id="1195552">sssd cached credentials lost after update</issue>
  <issue tracker="bnc" id="1196166">sssd-32bit gone after sssd updates</issue>
  <issue tracker="bnc" id="1182058">zypper dup: fails to update sssd, sssd_ldap libldap-2 in correct order ref:_00D1igLOd._5001iYK3Rr:ref</issue>
  <issue tracker="bnc" id="1190775">sssd: not all groups visible for a user</issue>
  <packager>scabrero</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for sssd</summary>
  <description>This update for sssd fixes the following issues:

- CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommand (bsc#1189492).

- Add 'ldap_ignore_unreadable_references' parameter to skip
  unreadable objects referenced by 'member' attributte (bsc#1190775)

- Fix 32-bit libraries package. Libraries were moved from sssd to sssd-common but 
  baselibs.conf was not updated accordingly (bsc#1182058, bsc#1196166)

- Remove caches only when performing a package downgrade. The sssd daemon takes care of 
  upgrading the database format when necessary (bsc#1195552)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places