Friday, August 20, 2021

Oracle Linux: (CVE-2021-3621) ELSA-2021-3151: sssd security update

Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.From ELSA-2021-3151:[2.4.0-9.0.1] - Restore default debug level for sss_cache [Orabug: 32810448] - Restore default debug level for shadow-utils tools [Orabug: 32810448] - Revert Redhat's change of disallowing duplicated incomplete gid when 'id_provider=ldap' is used, which caused regression in AD environment. [Orabug: 29286774] [Doc ID 2605732.1] [2.4.0-9.2] - Resolves: rhbz#1985456 - EMBARGOED CVE-2021-3621 sssd: shell command injection in sssctl [rhel-8.4.0.z]
Solution(s)
  • oracle-linux-upgrade-libipa_hbac
  • oracle-linux-upgrade-libsss_autofs
  • oracle-linux-upgrade-libsss_certmap
  • oracle-linux-upgrade-libsss_idmap
  • oracle-linux-upgrade-libsss_nss_idmap
  • oracle-linux-upgrade-libsss_nss_idmap-devel
  • oracle-linux-upgrade-libsss_simpleifp
  • oracle-linux-upgrade-libsss_sudo
  • oracle-linux-upgrade-python3-libipa_hbac
  • oracle-linux-upgrade-python3-libsss_nss_idmap
  • oracle-linux-upgrade-python3-sss
  • oracle-linux-upgrade-python3-sss-murmur
  • oracle-linux-upgrade-python3-sssdconfig
  • oracle-linux-upgrade-sssd
  • oracle-linux-upgrade-sssd-ad
  • oracle-linux-upgrade-sssd-client
  • oracle-linux-upgrade-sssd-common
  • oracle-linux-upgrade-sssd-common-pac
  • oracle-linux-upgrade-sssd-dbus
  • oracle-linux-upgrade-sssd-ipa
  • oracle-linux-upgrade-sssd-kcm
  • oracle-linux-upgrade-sssd-krb5
  • oracle-linux-upgrade-sssd-krb5-common
  • oracle-linux-upgrade-sssd-ldap
  • oracle-linux-upgrade-sssd-libwbclient
  • oracle-linux-upgrade-sssd-nfs-idmap
  • oracle-linux-upgrade-sssd-polkit-rules
  • oracle-linux-upgrade-sssd-proxy
  • oracle-linux-upgrade-sssd-tools
  • oracle-linux-upgrade-sssd-winbind-idmap


  • References
  • ELSA-2021-3151
  • CVE-2021-3621




  •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore