Mailinglist Archive: opensuse-updates (119 mails)

< Previous Next >
openSUSE-SU-2013:0559-1: moderate: sssd: fixed some access control management issues
openSUSE Security Update: sssd: fixed some access control management issues
______________________________________________________________________________

Announcement ID: openSUSE-SU-2013:0559-1
Rating: moderate
References: #809153
Cross-References: CVE-2013-0287
Affected Products:
openSUSE 12.3
______________________________________________________________________________

An update that fixes one vulnerability is now available.

Description:


When SSSD is configured as an Active Directory client by
using the new Active Directory provider or equivalent
configuration of the LDAP provider, the Simple Access
Provider does not handle access control correctly. If any
groups are specified with the simple_deny_groups option,
the group members are permitted access. (CVE-2013-0287)


Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE 12.3:

zypper in -t patch openSUSE-2013-264

To bring your system up-to-date, use "zypper patch".


Package List:

- openSUSE 12.3 (i586 x86_64):

libipa_hbac-devel-1.9.4-1.9.1
libipa_hbac0-1.9.4-1.9.1
libipa_hbac0-debuginfo-1.9.4-1.9.1
libsss_idmap-devel-1.9.4-1.9.1
libsss_idmap0-1.9.4-1.9.1
libsss_idmap0-debuginfo-1.9.4-1.9.1
libsss_sudo-1.9.4-1.9.1
libsss_sudo-debuginfo-1.9.4-1.9.1
python-ipa_hbac-1.9.4-1.9.1
python-ipa_hbac-debuginfo-1.9.4-1.9.1
python-sssd-config-1.9.4-1.9.1
python-sssd-config-debuginfo-1.9.4-1.9.1
sssd-1.9.4-1.9.1
sssd-debuginfo-1.9.4-1.9.1
sssd-debugsource-1.9.4-1.9.1
sssd-ipa-provider-1.9.4-1.9.1
sssd-ipa-provider-debuginfo-1.9.4-1.9.1
sssd-tools-1.9.4-1.9.1
sssd-tools-debuginfo-1.9.4-1.9.1

- openSUSE 12.3 (x86_64):

sssd-32bit-1.9.4-1.9.1
sssd-debuginfo-32bit-1.9.4-1.9.1


References:

http://support.novell.com/security/cve/CVE-2013-0287.html
https://bugzilla.novell.com/809153


< Previous Next >
This Thread
  • No further messages