sssd-1.16.2-13.el7
エラータID: AXSA:2019-3678:01
リリース日:
2019/02/15 Friday - 16:32
題名:
sssd-1.16.2-13.el7
影響のあるチャネル:
Asianux Server 7 for x86_64
Severity:
Low
Description:
以下項目について対処しました。
[Security Fix]
- sssd には, sudo との間で利用可能なルールを共有するために用いる
UNIX pipe を生成する際のパーミッションが広すぎるため,
sudo と SSSD が使用している Raw プロトコルでメッセージを送る
ことができるユーザーであれば,sudo ルールを閲覧できる脆弱性が
あります。(CVE-2018-10852)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2018-10852
The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD has too wide permissions, which means that anyone who can send a message using the same raw protocol that sudo and SSSD use can read the sudo rules available for any user. This affects versions of SSSD before 1.16.3.
The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD has too wide permissions, which means that anyone who can send a message using the same raw protocol that sudo and SSSD use can read the sudo rules available for any user. This affects versions of SSSD before 1.16.3.
追加情報:
N/A
ダウンロード:
SRPMS
- sssd-1.16.2-13.el7.src.rpm
MD5: 1dee1883d30ab4ba38465861a6a3e037
SHA-256: 29b7740329b345c29bf71932851b9fb1395742867f5e1f4a4bfec5fce3e52b3d
Size: 6.11 MB
Asianux Server 7 for x86_64
- libipa_hbac-1.16.2-13.el7.x86_64.rpm
MD5: 3ef73a96112116d0d38af0418e76237d
SHA-256: da47e5d434f2cc31f096b071234798164660bf4ebf861f163404a1e77caf731a
Size: 141.57 kB - libsss_autofs-1.16.2-13.el7.x86_64.rpm
MD5: b9b786197c50d27cb0bac4b8cdf2f772
SHA-256: ae50fdad4dd1294dc5ec5343955e26ca7c361b40a935b8e425db03d4df3e5887
Size: 143.51 kB - libsss_certmap-1.16.2-13.el7.x86_64.rpm
MD5: 5ca93243d6cb1b473eb4517727a4c31d
SHA-256: bdcbc34d0fd3f4032f526f0877e8d23fd36f58fe6f5fabdad12479ddc37da9bb
Size: 169.88 kB - libsss_idmap-1.16.2-13.el7.x86_64.rpm
MD5: ceb3aa9d06f9e63a73231465498a5ffc
SHA-256: 63923fa6a3682d3b965699ac598029a3aa05c50e14d8e6c1e3a93b93613643c2
Size: 146.32 kB - libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm
MD5: 251a1b2861f630db47b91e62b8ac91a1
SHA-256: 8cb96d2204edfbccf24b2074a5e01a1d248713e2c8fb4f3f93fc0676e2788239
Size: 152.63 kB - libsss_simpleifp-1.16.2-13.el7.x86_64.rpm
MD5: c86b7af92f98b3e52ac259e794a0fbea
SHA-256: 3885fb38e87f01ac7ac1a6f8c1145828e107d815551115d0437e78d626c34fa6
Size: 132.41 kB - libsss_sudo-1.16.2-13.el7.x86_64.rpm
MD5: 1c12e6685b6aa2e8eef62e9b79b30780
SHA-256: 7d7113eb1534adb9c3a863c2cd6cb49ff70b7bf48bc30cdfa3b9a9c92facec9c
Size: 141.96 kB - python-libipa_hbac-1.16.2-13.el7.x86_64.rpm
MD5: 4c3735658b5128a7913a562321acab0d
SHA-256: 4eeca06dc1a9dba53b95ee2d1d3847478720f049325f4604d28bbecfa8526453
Size: 134.61 kB - python-libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm
MD5: 500f5e2a233bfc463b12911110d5aa76
SHA-256: 03b325800964d27d10aa8be28c72e458a27e5dfb0d1bfaec39637a2b1078ab04
Size: 127.64 kB - python-sss-1.16.2-13.el7.x86_64.rpm
MD5: eba515d98b89f1025cb4b05dc5d1a89a
SHA-256: 384f4c452e2f73f0029dae46a9afd050a72e512db62a619d60b9486bf0768d25
Size: 147.48 kB - python-sssdconfig-1.16.2-13.el7.noarch.rpm
MD5: 73255c128d48d3785a68c4b42cbfbcf7
SHA-256: 5afe78c57d103d85040d2b1c6ce997fc1ada315cc7f96bc64f5f4bea30a77166
Size: 159.70 kB - python-sss-murmur-1.16.2-13.el7.x86_64.rpm
MD5: 29e13a1d64f8bd05faff7d219fbaba39
SHA-256: c4c9c8dadffeac60d132beed490b1a10222dc6d380ae25b44d91dd9d4385b838
Size: 124.46 kB - sssd-1.16.2-13.el7.x86_64.rpm
MD5: 6c68b415391e7d2f016e24792e1c9cfd
SHA-256: 98c0cc0c005cad0d0e8651647bef11fab7b89bb77ed507305db279efbebfe9b9
Size: 133.39 kB - sssd-ad-1.16.2-13.el7.x86_64.rpm
MD5: 8ef1cbf1745dc2168d25a1f7fe5beaa2
SHA-256: aaf84e683c037573b81714d939b16fc5ca06a84e5f6f61d5d45c4a481abc5010
Size: 262.28 kB - sssd-client-1.16.2-13.el7.x86_64.rpm
MD5: a2f7512680d690d7dab8b67c9e72a2f7
SHA-256: 8091ccc82362756fceac6b23f7af3cc05dec14a0d05bc6ec8bc41de93ba08ec1
Size: 200.74 kB - sssd-common-1.16.2-13.el7.x86_64.rpm
MD5: 8c547beb437bf607a63320a815082d4d
SHA-256: 64eed402f1909bf9bdbc55da6f6f18d7c6b5b02381fc6eac352f188303b89806
Size: 1.38 MB - sssd-common-pac-1.16.2-13.el7.x86_64.rpm
MD5: 0913d2fb2cabe685bcdfaabb885c1c99
SHA-256: b6fdec882a7d3c7c40980a0b243018c2a067c27c111cd726623a30a38f1cc9d6
Size: 203.59 kB - sssd-dbus-1.16.2-13.el7.x86_64.rpm
MD5: f5c1e66c56e7984bf628d654d6e1cfd3
SHA-256: 92f419deb5da3d35aeb500bb4943e618a069d606f47f32d918546f6456d5a90f
Size: 240.29 kB - sssd-ipa-1.16.2-13.el7.x86_64.rpm
MD5: 22151cb7687a1b9fa369f991200fd338
SHA-256: 8ad1cd89cced2a219fd53a3e4d1a26e3c4ce47bafdcae01927a797f1dd35a7bd
Size: 351.95 kB - sssd-kcm-1.16.2-13.el7.x86_64.rpm
MD5: 99af559213ec853387d9c2b3ce1e5c26
SHA-256: 99107d396da98eea9b2717dd2d531642baa9c0fdcca0e0190e3e07cf416a618e
Size: 248.57 kB - sssd-krb5-1.16.2-13.el7.x86_64.rpm
MD5: 05fcd7d7fdc615ab491cdb5df28f475c
SHA-256: 59949e09cd85c4b2557fefdc5c59a401547a12013a5b9898a47529f9f642d63a
Size: 174.93 kB - sssd-krb5-common-1.16.2-13.el7.x86_64.rpm
MD5: 27dd0fd25932f538a716863dc9eea55b
SHA-256: e9eac7f79dab9aefd99be6760ba5e92fe34b0511a2fd4434b1ff9ee6f2c45b94
Size: 208.14 kB - sssd-ldap-1.16.2-13.el7.x86_64.rpm
MD5: cfc29e279fca25a8648525b07ac3d990
SHA-256: 3fde917b12ad3e085f2e857d3674eb3a98d40590c69e8fa7403b376e6e2e9ac2
Size: 226.15 kB - sssd-libwbclient-1.16.2-13.el7.x86_64.rpm
MD5: c52832fc13cb538fe3cc3e000a843d02
SHA-256: 03d3b583cea486e023d403eb6fa5f53fe403e77b8f5b7069213e5879279dd849
Size: 135.36 kB - sssd-polkit-rules-1.16.2-13.el7.x86_64.rpm
MD5: 0c0c053162720d847bc86b5e84ab57af
SHA-256: 2608586b20d4f022c1f3a7b1dec1ab7053229fcddf5dc87360f2df81493bba25
Size: 121.39 kB - sssd-proxy-1.16.2-13.el7.x86_64.rpm
MD5: 43996ad7cbd05fda3dfd0a0e553b8867
SHA-256: b57f1d024e569bc598304a1af70e37bfecbb824fbb164aad751ea65c6df8e2a6
Size: 168.47 kB - sssd-tools-1.16.2-13.el7.x86_64.rpm
MD5: dcaddce078502e2ab8bed42977cc0b5a
SHA-256: 5e70e6e8507b17054b34f317c45f2c75b17ea0ac6d58ffd861de06d6d7ba472f
Size: 404.41 kB - sssd-winbind-idmap-1.16.2-13.el7.x86_64.rpm
MD5: d44388d4efb3ee13ff2d1e110bac10e1
SHA-256: e554fbdfce149db6b1a2b66e2db97c94a8ea89e69c9d343d33cec35058f246ae
Size: 128.44 kB - libipa_hbac-1.16.2-13.el7.i686.rpm
MD5: 96f2f6d72d8ae0ffc6abf5273440fea7
SHA-256: 55249c9de2885f0115fd925d3ca846a68847f4741b180ddca3410e4f487eba10
Size: 141.45 kB - libsss_certmap-1.16.2-13.el7.i686.rpm
MD5: 311f9561b26b6f620b98db1803df6084
SHA-256: 0e7d8a803a85b0e94e1f7181fc57bae294782d9079381575990b2b92e7447705
Size: 169.31 kB - libsss_idmap-1.16.2-13.el7.i686.rpm
MD5: a925832cbefb192b3d04cc73a7d983a1
SHA-256: ba271dea667c6ad3768b8310824eba38c7b2d2635a328e30d990a3909febd2d6
Size: 146.80 kB - libsss_nss_idmap-1.16.2-13.el7.i686.rpm
MD5: 24e8d0659fdabe075bc39d700e775c40
SHA-256: 1f08a8f7f7f7d824dfb0e956f3ebe102a025497b30be655bda362a3edb35e833
Size: 152.81 kB - libsss_simpleifp-1.16.2-13.el7.i686.rpm
MD5: 2f86a61e91e5df90fd1fcb6d7bc89984
SHA-256: 02c4a8d2287e0265085460a313dcafa58550b56d42232e5bf92f2c66fc336778
Size: 132.50 kB - sssd-client-1.16.2-13.el7.i686.rpm
MD5: 53611fe73403ae78ff45642bf30bc919
SHA-256: ab036fdfeb6d547c4e79a6536ad5dc765e93487dd71e73381acd09afc03820ea
Size: 200.60 kB