[SECURITY] Fedora 12 Update: sssd-1.0.1-1.fc12
updates at fedoraproject.org
updates at fedoraproject.org
Tue Jan 12 20:48:10 UTC 2010
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-0413
2010-01-12 20:06:15
--------------------------------------------------------------------------------
Name : sssd
Product : Fedora 12
Version : 1.0.1
Release : 1.fc12
URL : http://fedorahosted.org/sssd
Summary : System Security Services Daemon
Description :
Provides a set of daemons to manage access to remote directories and
authentication mechanisms. It provides an NSS and PAM interface toward
the system and a pluggable backend system to connect to multiple different
account sources. It is also the basis to provide client auditing and policy
services for projects like FreeIPA.
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2010-0014 - SSSD accepts any password when offline with a valid TGT
available
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 11 2010 Stephen Gallagher <sgallagh at redhat.com> - 1.0.1-1
- Fix CVE-2010-0014
* Mon Dec 21 2009 Stephen Gallagher <sgallagh at redhat.com> - 1.0.0-2
- Patch SSSDConfig API to address
- https://bugzilla.redhat.com/show_bug.cgi?id=549482
* Fri Dec 18 2009 Stephen Gallagher <sgallagh at redhat.com> - 1.0.0-1
- New upstream stable release 1.0.0
* Fri Dec 11 2009 Stephen Gallagher <sgallagh at redhat.com> - 0.99.1-1
- New upstream bugfix release 0.99.1
* Mon Nov 30 2009 Stephen Gallagher <sgallagh at redhat.com> - 0.99.0-1
- New upstream release 0.99.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #553631 - CVE-2010-0014 SSSD accepts any password when offline with a valid TGT available
https://bugzilla.redhat.com/show_bug.cgi?id=553631
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update sssd' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list