<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git/dynamic-layers/networking-layer/recipes-security/sssd/files, branch master</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=master</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=master'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2025-04-13T18:07:57+00:00</updated>
<entry>
<title>sssd: upgrade 2.9.2 -&gt; 2.10.2</title>
<updated>2025-04-13T18:07:57+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@eng.windriver.com</email>
</author>
<published>2025-03-27T13:23:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=0d6aa528cf91701cfc368dc3013d9bba84d2d831'/>
<id>urn:sha1:0d6aa528cf91701cfc368dc3013d9bba84d2d831</id>
<content type='text'>
ChangeLog:
https://github.com/SSSD/sssd/releases/tag/2.10.2

* Drop backport patches.
* Update sssd.conf and volatile files.
* Drop PACKAGECONFIG[infopipe] as it has been removed upstream.

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: Fix CVE-2023-3758</title>
<updated>2024-07-30T00:07:01+00:00</updated>
<author>
<name>Hitendra Prajapati</name>
<email>hprajapati@mvista.com</email>
</author>
<published>2024-06-28T05:43:22+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ecdd682b928e648735dc73ab57b3bd8ed419649e'/>
<id>urn:sha1:ecdd682b928e648735dc73ab57b3bd8ed419649e</id>
<content type='text'>
A race condition flaw was found in sssd where the GPO policy is
not consistently applied for authenticated users. This may lead
to improper authorization issues, granting or denying access to
resources inappropriately.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-3758

Upstream-patch:
https://github.com/SSSD/sssd/commit/f4ebe1408e0bc67abfbfb5f0ca2ea13803b36726

Signed-off-by: Hitendra Prajapati &lt;hprajapati@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: 2.7.4 -&gt; 2.9.1</title>
<updated>2023-08-06T15:31:18+00:00</updated>
<author>
<name>Kai Kang</name>
<email>kai.kang@windriver.com</email>
</author>
<published>2023-07-28T06:30:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=782251aa8fe387b2545c8e7e20a1a90c26300883'/>
<id>urn:sha1:782251aa8fe387b2545c8e7e20a1a90c26300883</id>
<content type='text'>
Update sssd from 2.7.4 to 2.9.1.

* backport patch to fix interpreter of script sss_analyze
* add runtime dependency python3-systemd when systemd is enabled
* update FILES

Signed-off-by: Kai Kang &lt;kai.kang@windriver.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: update to 2.7.1</title>
<updated>2022-06-18T13:48:22+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-06-11T14:06:24+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=caadc8672b7f7eff6d4cfcbdca116aa76697816e'/>
<id>urn:sha1:caadc8672b7f7eff6d4cfcbdca116aa76697816e</id>
<content type='text'>
drop CVE-2021-3621.patch
refresh a few patches

fixup configure-unsafe globally via sed in build.m4

=== test
RESULTS - sssd.SSSDTest.test_sssd_help: PASSED (1.70s)
RESULTS - sssd.SSSDTest.test_sssd_sssctl_conf_perms_chk: PASSED (2.71s)
RESULTS - sssd.SSSDTest.test_sssd_sssctl_deamon: PASSED (2.07s)

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: use example conf file</title>
<updated>2022-06-18T13:48:22+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-06-11T13:28:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=23d501eb70e2a70da3d2f1288ac094c29bea0933'/>
<id>urn:sha1:23d501eb70e2a70da3d2f1288ac094c29bea0933</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd:move to dynamic networking-layer</title>
<updated>2022-06-18T13:48:22+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-06-09T23:11:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=db3a3e87a6f6fcc424eb208bf37417ab3aeaf43a'/>
<id>urn:sha1:db3a3e87a6f6fcc424eb208bf37417ab3aeaf43a</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
</feed>
