UbuntuUpdates.org

Package "libpam-sss"

Name: libpam-sss

Description:

Pam module for the System Security Services Daemon
Latest version: 2.2.3-3ubuntu0.13
Release: focal (20.04)
Level: updates
Repository: main
Head package: sssd
Homepage: https://github.com/SSSD/sssd

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libpam-sss"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libpam-sss" in Focal

Repository Area Version
base main 2.2.3-3
security main 2.2.3-3ubuntu0.13

Changelog

Version: 2.2.3-3ubuntu0.13 2024-06-17 16:07:24 UTC

  sssd (2.2.3-3ubuntu0.13) focal-security; urgency=medium

  * SECURITY UPDATE: race when GPO policy is being applied
    - debian/patches/CVE-2023-3758.patch: use hash to store intermediate
      results in src/providers/ad/ad_gpo.c.
    - CVE-2023-3758

 -- Marc Deslauriers <email address hidden> Fri, 07 Jun 2024 10:55:58 -0400
Source diff to previous version
CVE-2023-3758 A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authoriza

Version: 2.2.3-3ubuntu0.12 2023-06-16 14:07:00 UTC

  sssd (2.2.3-3ubuntu0.12) focal-security; urgency=medium

  * Fix crash with mismatched packages (LP: #2023598)
    - debian/control: add a versioned dependency on libsss-certmap0 to the
      sssd-common package.

 -- Marc Deslauriers <email address hidden> Thu, 15 Jun 2023 18:16:57 -0400
Source diff to previous version
2023598 Too loose Depends constraints in sssd-common causes critical crash

Version: 2.2.3-3ubuntu0.11 2023-06-12 15:07:03 UTC

  sssd (2.2.3-3ubuntu0.11) focal-security; urgency=medium

  * SECURITY UPDATE: libsss_certmap fails to sanitise certificate data used
    in LDAP filters
    - debian/patches/CVE-2022-4254.patch: sanitize LDAP search filter in
      Makefile.am, src/lib/certmap/sss_certmap.c,
      src/lib/certmap/sss_certmap.exports, src/lib/certmap/sss_certmap.h,
      src/responder/pam/pamsrv_p11.c, src/tests/cmocka/test_certmap.c,
      src/util/util.c, src/util/util_ext.c.
    - CVE-2022-4254

 -- Marc Deslauriers <email address hidden> Tue, 06 Jun 2023 09:22:35 -0400
Source diff to previous version
CVE-2022-4254 sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters

Version: 2.2.3-3ubuntu0.10 2023-03-08 17:06:54 UTC

  sssd (2.2.3-3ubuntu0.10) focal-security; urgency=medium

  * No-change rebuild against samba security update.

 -- Marc Deslauriers <email address hidden> Fri, 03 Mar 2023 08:21:36 -0500
Source diff to previous version

Version: 2.2.3-3ubuntu0.9 2022-08-03 06:07:18 UTC

  sssd (2.2.3-3ubuntu0.9) focal; urgency=medium

  * d/p/lp1934997-authentication-fails-gpo-non-existent.patch:
    Fix authentication failure when GPO is enabled and
    SecEdit/GptTmpl.inf is missing (LP: #1934997).
  * d/p/lp1979350-GPO-ignore-non-ascii-symbols-in-GPT.INI.patch:
    Ignore non-ASCII characters in GPT.INI. (LP: #1979350)

 -- Sergio Durigan Junior <email address hidden> Tue, 21 Jun 2022 14:29:52 -0400
1934997 Authentication fails after upgrading sssd to 2.2.3-3ubuntu0.6
1979350 sssd can't parse GPT.INI if it contains non-ASCII characters


About   -   Send Feedback to @ubuntu_updates