sssd-1.16.2-13.el7

エラータID: AXSA:2019-3678:01

リリース日: 
2019/02/15 Friday - 16:32
題名: 
sssd-1.16.2-13.el7
影響のあるチャネル: 
Asianux Server 7 for x86_64
Severity: 
Low
Description: 

以下項目について対処しました。

[Security Fix]

- sssd には, sudo との間で利用可能なルールを共有するために用いる
UNIX pipe を生成する際のパーミッションが広すぎるため,
sudo と SSSD が使用している Raw プロトコルでメッセージを送る
ことができるユーザーであれば,sudo ルールを閲覧できる脆弱性が
あります。(CVE-2018-10852)

一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2018-10852
The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD has too wide permissions, which means that anyone who can send a message using the same raw protocol that sudo and SSSD use can read the sudo rules available for any user. This affects versions of SSSD before 1.16.3.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. sssd-1.16.2-13.el7.src.rpm
    MD5: 1dee1883d30ab4ba38465861a6a3e037
    SHA-256: 29b7740329b345c29bf71932851b9fb1395742867f5e1f4a4bfec5fce3e52b3d
    Size: 6.11 MB

Asianux Server 7 for x86_64
  1. libipa_hbac-1.16.2-13.el7.x86_64.rpm
    MD5: 3ef73a96112116d0d38af0418e76237d
    SHA-256: da47e5d434f2cc31f096b071234798164660bf4ebf861f163404a1e77caf731a
    Size: 141.57 kB
  2. libsss_autofs-1.16.2-13.el7.x86_64.rpm
    MD5: b9b786197c50d27cb0bac4b8cdf2f772
    SHA-256: ae50fdad4dd1294dc5ec5343955e26ca7c361b40a935b8e425db03d4df3e5887
    Size: 143.51 kB
  3. libsss_certmap-1.16.2-13.el7.x86_64.rpm
    MD5: 5ca93243d6cb1b473eb4517727a4c31d
    SHA-256: bdcbc34d0fd3f4032f526f0877e8d23fd36f58fe6f5fabdad12479ddc37da9bb
    Size: 169.88 kB
  4. libsss_idmap-1.16.2-13.el7.x86_64.rpm
    MD5: ceb3aa9d06f9e63a73231465498a5ffc
    SHA-256: 63923fa6a3682d3b965699ac598029a3aa05c50e14d8e6c1e3a93b93613643c2
    Size: 146.32 kB
  5. libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm
    MD5: 251a1b2861f630db47b91e62b8ac91a1
    SHA-256: 8cb96d2204edfbccf24b2074a5e01a1d248713e2c8fb4f3f93fc0676e2788239
    Size: 152.63 kB
  6. libsss_simpleifp-1.16.2-13.el7.x86_64.rpm
    MD5: c86b7af92f98b3e52ac259e794a0fbea
    SHA-256: 3885fb38e87f01ac7ac1a6f8c1145828e107d815551115d0437e78d626c34fa6
    Size: 132.41 kB
  7. libsss_sudo-1.16.2-13.el7.x86_64.rpm
    MD5: 1c12e6685b6aa2e8eef62e9b79b30780
    SHA-256: 7d7113eb1534adb9c3a863c2cd6cb49ff70b7bf48bc30cdfa3b9a9c92facec9c
    Size: 141.96 kB
  8. python-libipa_hbac-1.16.2-13.el7.x86_64.rpm
    MD5: 4c3735658b5128a7913a562321acab0d
    SHA-256: 4eeca06dc1a9dba53b95ee2d1d3847478720f049325f4604d28bbecfa8526453
    Size: 134.61 kB
  9. python-libsss_nss_idmap-1.16.2-13.el7.x86_64.rpm
    MD5: 500f5e2a233bfc463b12911110d5aa76
    SHA-256: 03b325800964d27d10aa8be28c72e458a27e5dfb0d1bfaec39637a2b1078ab04
    Size: 127.64 kB
  10. python-sss-1.16.2-13.el7.x86_64.rpm
    MD5: eba515d98b89f1025cb4b05dc5d1a89a
    SHA-256: 384f4c452e2f73f0029dae46a9afd050a72e512db62a619d60b9486bf0768d25
    Size: 147.48 kB
  11. python-sssdconfig-1.16.2-13.el7.noarch.rpm
    MD5: 73255c128d48d3785a68c4b42cbfbcf7
    SHA-256: 5afe78c57d103d85040d2b1c6ce997fc1ada315cc7f96bc64f5f4bea30a77166
    Size: 159.70 kB
  12. python-sss-murmur-1.16.2-13.el7.x86_64.rpm
    MD5: 29e13a1d64f8bd05faff7d219fbaba39
    SHA-256: c4c9c8dadffeac60d132beed490b1a10222dc6d380ae25b44d91dd9d4385b838
    Size: 124.46 kB
  13. sssd-1.16.2-13.el7.x86_64.rpm
    MD5: 6c68b415391e7d2f016e24792e1c9cfd
    SHA-256: 98c0cc0c005cad0d0e8651647bef11fab7b89bb77ed507305db279efbebfe9b9
    Size: 133.39 kB
  14. sssd-ad-1.16.2-13.el7.x86_64.rpm
    MD5: 8ef1cbf1745dc2168d25a1f7fe5beaa2
    SHA-256: aaf84e683c037573b81714d939b16fc5ca06a84e5f6f61d5d45c4a481abc5010
    Size: 262.28 kB
  15. sssd-client-1.16.2-13.el7.x86_64.rpm
    MD5: a2f7512680d690d7dab8b67c9e72a2f7
    SHA-256: 8091ccc82362756fceac6b23f7af3cc05dec14a0d05bc6ec8bc41de93ba08ec1
    Size: 200.74 kB
  16. sssd-common-1.16.2-13.el7.x86_64.rpm
    MD5: 8c547beb437bf607a63320a815082d4d
    SHA-256: 64eed402f1909bf9bdbc55da6f6f18d7c6b5b02381fc6eac352f188303b89806
    Size: 1.38 MB
  17. sssd-common-pac-1.16.2-13.el7.x86_64.rpm
    MD5: 0913d2fb2cabe685bcdfaabb885c1c99
    SHA-256: b6fdec882a7d3c7c40980a0b243018c2a067c27c111cd726623a30a38f1cc9d6
    Size: 203.59 kB
  18. sssd-dbus-1.16.2-13.el7.x86_64.rpm
    MD5: f5c1e66c56e7984bf628d654d6e1cfd3
    SHA-256: 92f419deb5da3d35aeb500bb4943e618a069d606f47f32d918546f6456d5a90f
    Size: 240.29 kB
  19. sssd-ipa-1.16.2-13.el7.x86_64.rpm
    MD5: 22151cb7687a1b9fa369f991200fd338
    SHA-256: 8ad1cd89cced2a219fd53a3e4d1a26e3c4ce47bafdcae01927a797f1dd35a7bd
    Size: 351.95 kB
  20. sssd-kcm-1.16.2-13.el7.x86_64.rpm
    MD5: 99af559213ec853387d9c2b3ce1e5c26
    SHA-256: 99107d396da98eea9b2717dd2d531642baa9c0fdcca0e0190e3e07cf416a618e
    Size: 248.57 kB
  21. sssd-krb5-1.16.2-13.el7.x86_64.rpm
    MD5: 05fcd7d7fdc615ab491cdb5df28f475c
    SHA-256: 59949e09cd85c4b2557fefdc5c59a401547a12013a5b9898a47529f9f642d63a
    Size: 174.93 kB
  22. sssd-krb5-common-1.16.2-13.el7.x86_64.rpm
    MD5: 27dd0fd25932f538a716863dc9eea55b
    SHA-256: e9eac7f79dab9aefd99be6760ba5e92fe34b0511a2fd4434b1ff9ee6f2c45b94
    Size: 208.14 kB
  23. sssd-ldap-1.16.2-13.el7.x86_64.rpm
    MD5: cfc29e279fca25a8648525b07ac3d990
    SHA-256: 3fde917b12ad3e085f2e857d3674eb3a98d40590c69e8fa7403b376e6e2e9ac2
    Size: 226.15 kB
  24. sssd-libwbclient-1.16.2-13.el7.x86_64.rpm
    MD5: c52832fc13cb538fe3cc3e000a843d02
    SHA-256: 03d3b583cea486e023d403eb6fa5f53fe403e77b8f5b7069213e5879279dd849
    Size: 135.36 kB
  25. sssd-polkit-rules-1.16.2-13.el7.x86_64.rpm
    MD5: 0c0c053162720d847bc86b5e84ab57af
    SHA-256: 2608586b20d4f022c1f3a7b1dec1ab7053229fcddf5dc87360f2df81493bba25
    Size: 121.39 kB
  26. sssd-proxy-1.16.2-13.el7.x86_64.rpm
    MD5: 43996ad7cbd05fda3dfd0a0e553b8867
    SHA-256: b57f1d024e569bc598304a1af70e37bfecbb824fbb164aad751ea65c6df8e2a6
    Size: 168.47 kB
  27. sssd-tools-1.16.2-13.el7.x86_64.rpm
    MD5: dcaddce078502e2ab8bed42977cc0b5a
    SHA-256: 5e70e6e8507b17054b34f317c45f2c75b17ea0ac6d58ffd861de06d6d7ba472f
    Size: 404.41 kB
  28. sssd-winbind-idmap-1.16.2-13.el7.x86_64.rpm
    MD5: d44388d4efb3ee13ff2d1e110bac10e1
    SHA-256: e554fbdfce149db6b1a2b66e2db97c94a8ea89e69c9d343d33cec35058f246ae
    Size: 128.44 kB
  29. libipa_hbac-1.16.2-13.el7.i686.rpm
    MD5: 96f2f6d72d8ae0ffc6abf5273440fea7
    SHA-256: 55249c9de2885f0115fd925d3ca846a68847f4741b180ddca3410e4f487eba10
    Size: 141.45 kB
  30. libsss_certmap-1.16.2-13.el7.i686.rpm
    MD5: 311f9561b26b6f620b98db1803df6084
    SHA-256: 0e7d8a803a85b0e94e1f7181fc57bae294782d9079381575990b2b92e7447705
    Size: 169.31 kB
  31. libsss_idmap-1.16.2-13.el7.i686.rpm
    MD5: a925832cbefb192b3d04cc73a7d983a1
    SHA-256: ba271dea667c6ad3768b8310824eba38c7b2d2635a328e30d990a3909febd2d6
    Size: 146.80 kB
  32. libsss_nss_idmap-1.16.2-13.el7.i686.rpm
    MD5: 24e8d0659fdabe075bc39d700e775c40
    SHA-256: 1f08a8f7f7f7d824dfb0e956f3ebe102a025497b30be655bda362a3edb35e833
    Size: 152.81 kB
  33. libsss_simpleifp-1.16.2-13.el7.i686.rpm
    MD5: 2f86a61e91e5df90fd1fcb6d7bc89984
    SHA-256: 02c4a8d2287e0265085460a313dcafa58550b56d42232e5bf92f2c66fc336778
    Size: 132.50 kB
  34. sssd-client-1.16.2-13.el7.i686.rpm
    MD5: 53611fe73403ae78ff45642bf30bc919
    SHA-256: ab036fdfeb6d547c4e79a6536ad5dc765e93487dd71e73381acd09afc03820ea
    Size: 200.60 kB