UbuntuUpdates.org

Package "libnss-sss"

Name: libnss-sss

Description:

Nss library for the System Security Services Daemon

Latest version: 2.9.4-1.1ubuntu6.2
Release: noble (24.04)
Level: updates
Repository: main
Head package: sssd
Homepage: https://github.com/SSSD/sssd

Links


Download "libnss-sss"


Other versions of "libnss-sss" in Noble

Repository Area Version
base main 2.9.4-1.1ubuntu6
security main 2.9.4-1.1ubuntu6.1

Changelog

Version: 2.9.4-1.1ubuntu6.2 2024-12-09 20:06:45 UTC

  sssd (2.9.4-1.1ubuntu6.2) noble; urgency=medium

  * Close file descriptors to the /var/lib/sss/pipes/nss socket when threads
    are destroyed to avoid file descriptor leak. (LP: #2085389)
    - d/p/lp2085389-sss-client-handle-key-value-in-destructor.patch

 -- Jorge Merlino <email address hidden> Wed, 23 Oct 2024 10:09:14 -0300

Source diff to previous version
2085389 File descriptor leak on /var/lib/sss/pipes/nss socket

Version: 2.9.4-1.1ubuntu6.1 2024-06-17 16:07:34 UTC

  sssd (2.9.4-1.1ubuntu6.1) noble-security; urgency=medium

  * SECURITY UPDATE: race when GPO policy is being applied
    - debian/patches/CVE-2023-3758.patch: use hash to store intermediate
      results in src/providers/ad/ad_gpo.c.
    - CVE-2023-3758

 -- Marc Deslauriers <email address hidden> Fri, 07 Jun 2024 10:50:41 -0400

CVE-2023-3758 A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authoriza



About   -   Send Feedback to @ubuntu_updates