File _patchinfo of Package patchinfo.10398

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.10398

<patchinfo incident="10398">
  <issue tracker="bnc" id="1121759">VUL-1: CVE-2019-3811: sssd: fallback_homedir returns '/' for empty home directories in passwd file</issue>
  <issue tracker="bnc" id="1039567">sss_cache -U does not properly clear deleted users</issue>
  <issue tracker="bnc" id="977224">sssd_sudo crashes in _dbus_marshal_read_uint32()</issue>
  <issue tracker="bnc" id="976038">sss_cache crash with -d</issue>
  <issue tracker="bnc" id="1082568">SLES11-SPx SSSD/AD group membership inconsistencies</issue>
  <issue tracker="cve" id="2019-3811"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>scabrero</packager>
  <description>This update for sssd fixes the following issues:

Security vulnerability fixed:

- CVE-2019-3811: Fix fallback_homedir returning '/' for empty home directories
  (bsc#1121759)

Other bug fixes and changes:

- Skip sdap_save_grpmem() if ignore_group_members is set. (bsc#1082568)
- Only search for primary group if it is not already cached (bsc#1082568)
- Install /var/lib/sss/mc directory to correct sssd cache invalidation
  behaviour. Spec patch authored by Josef Cejka. (bsc#1039567)
  to fix a segfault in sudo provider (bsc#977224).
- Fix a segfault in sss_cache (bsc#976038).
</description>
  <summary>Security update for sssd</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.10398

Places