<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-security.git/dynamic-layers/networking-layer/recipes-security, branch styhead</title>
<subtitle>Mirror of git.yoctoproject.org/meta-security.git</subtitle>
<id>https://git.enea.com/cgit/linux/meta-security.git/atom?h=styhead</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-security.git/atom?h=styhead'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/'/>
<updated>2024-07-30T00:07:01+00:00</updated>
<entry>
<title>sssd: Fix CVE-2023-3758</title>
<updated>2024-07-30T00:07:01+00:00</updated>
<author>
<name>Hitendra Prajapati</name>
<email>hprajapati@mvista.com</email>
</author>
<published>2024-06-28T05:43:22+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ecdd682b928e648735dc73ab57b3bd8ed419649e'/>
<id>urn:sha1:ecdd682b928e648735dc73ab57b3bd8ed419649e</id>
<content type='text'>
A race condition flaw was found in sssd where the GPO policy is
not consistently applied for authenticated users. This may lead
to improper authorization issues, granting or denying access to
resources inappropriately.

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-3758

Upstream-patch:
https://github.com/SSSD/sssd/commit/f4ebe1408e0bc67abfbfb5f0ca2ea13803b36726

Signed-off-by: Hitendra Prajapati &lt;hprajapati@mvista.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>recipes: WORKDIR -&gt; UNPACKDIR transition</title>
<updated>2024-06-17T12:25:25+00:00</updated>
<author>
<name>Changqing Li</name>
<email>changqing.li@windriver.com</email>
</author>
<published>2024-05-28T05:44:06+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ceb47a8a39c4cec612db63fab573124960f52a8d'/>
<id>urn:sha1:ceb47a8a39c4cec612db63fab573124960f52a8d</id>
<content type='text'>
* WORKDIR -&gt; UNPACKDIR transition
* Switch away from S = WORKDIR

Signed-off-by: Changqing Li &lt;changqing.li@windriver.com&gt;
[Fixed up the smack changes due to prior patch]
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: remove duplicate option --without-python2-bindings</title>
<updated>2024-06-17T12:25:25+00:00</updated>
<author>
<name>Gael PORTAY</name>
<email>gael.portay@rtone.fr</email>
</author>
<published>2024-05-27T19:05:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=0883649439762fd1817263c39e6881d81fc92917'/>
<id>urn:sha1:0883649439762fd1817263c39e6881d81fc92917</id>
<content type='text'>
The option --without-python2-bindings was added twice, by the commit
4375507f39ed4bc62e1304838870be65f3a81460, and then after python2 was
deprecated with the commit 96737082ad20eabcbbaa82b0cacee0d05d50eaab.

This removes the latter.

Signed-off-by: Gaël PORTAY &lt;gael.portay@rtone.fr&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: Update to 2.9.2</title>
<updated>2023-09-25T13:45:11+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2023-09-16T16:19:43+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=ff8d871caf2616028dcba08cd67e4b6297f37bfd'/>
<id>urn:sha1:ff8d871caf2616028dcba08cd67e4b6297f37bfd</id>
<content type='text'>
fixes musl build regarding time structs.

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: 2.7.4 -&gt; 2.9.1</title>
<updated>2023-08-06T15:31:18+00:00</updated>
<author>
<name>Kai Kang</name>
<email>kai.kang@windriver.com</email>
</author>
<published>2023-07-28T06:30:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=782251aa8fe387b2545c8e7e20a1a90c26300883'/>
<id>urn:sha1:782251aa8fe387b2545c8e7e20a1a90c26300883</id>
<content type='text'>
Update sssd from 2.7.4 to 2.9.1.

* backport patch to fix interpreter of script sss_analyze
* add runtime dependency python3-systemd when systemd is enabled
* update FILES

Signed-off-by: Kai Kang &lt;kai.kang@windriver.com&gt;
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>update sssd to 2.7.4</title>
<updated>2022-09-12T15:11:50+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-09-06T23:35:49+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=8a4ed4034f31d2d9d7cd9f7e63f0482ca438783b'/>
<id>urn:sha1:8a4ed4034f31d2d9d7cd9f7e63f0482ca438783b</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: upgrade 2.7.1 -&gt; 2.7.3</title>
<updated>2022-07-30T21:11:27+00:00</updated>
<author>
<name>Upgrade Helper</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-07-28T20:57:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=2ca080928269bfab7ba10cf7412b6547933aaaf9'/>
<id>urn:sha1:2ca080928269bfab7ba10cf7412b6547933aaaf9</id>
<content type='text'>
add UPSTREAM_CHECK_URI
</content>
</entry>
<entry>
<title>sssd: update to 2.7.1</title>
<updated>2022-06-18T13:48:22+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-06-11T14:06:24+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=caadc8672b7f7eff6d4cfcbdca116aa76697816e'/>
<id>urn:sha1:caadc8672b7f7eff6d4cfcbdca116aa76697816e</id>
<content type='text'>
drop CVE-2021-3621.patch
refresh a few patches

fixup configure-unsafe globally via sed in build.m4

=== test
RESULTS - sssd.SSSDTest.test_sssd_help: PASSED (1.70s)
RESULTS - sssd.SSSDTest.test_sssd_sssctl_conf_perms_chk: PASSED (2.71s)
RESULTS - sssd.SSSDTest.test_sssd_sssctl_deamon: PASSED (2.07s)

Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd: use example conf file</title>
<updated>2022-06-18T13:48:22+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-06-11T13:28:51+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=23d501eb70e2a70da3d2f1288ac094c29bea0933'/>
<id>urn:sha1:23d501eb70e2a70da3d2f1288ac094c29bea0933</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
<entry>
<title>sssd:move to dynamic networking-layer</title>
<updated>2022-06-18T13:48:22+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster808@gmail.com</email>
</author>
<published>2022-06-09T23:11:29+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-security.git/commit/?id=db3a3e87a6f6fcc424eb208bf37417ab3aeaf43a'/>
<id>urn:sha1:db3a3e87a6f6fcc424eb208bf37417ab3aeaf43a</id>
<content type='text'>
Signed-off-by: Armin Kuster &lt;akuster808@gmail.com&gt;
</content>
</entry>
</feed>
