freeipa team mailing list archive

Thread
Date

[Bug 1600513] Re: Depend on libnss-sss and libpam-sss

To: freeipa@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1600513@xxxxxxxxxxxxxxxxxx>
Date: Mon, 26 Dec 2016 07:39:06 -0000
Reply-to: Bug 1600513 <1600513@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package freeipa - 4.3.2-5

---------------
freeipa (4.3.2-5) unstable; urgency=medium

  * fix-cve-2016-5404.diff: Fix permission check bypass (Closes: #835131)
    - CVE-2016-5404
  * ipa-kdb-support-dal-version-5-and-6.diff: Support mit-krb5 1.15.
    (Closes: #844114)

 -- Timo Aaltonen <tjaalton@xxxxxxxxxx>  Sat, 03 Dec 2016 01:02:40 +0200

** Changed in: freeipa (Ubuntu)
       Status: New => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-5404

-- 
You received this bug notification because you are a member of FreeIPA,
which is subscribed to freeipa in Ubuntu.
https://bugs.launchpad.net/bugs/1600513

Title:
  Depend on libnss-sss and libpam-sss

Status in freeipa package in Ubuntu:
  Fix Released

Bug description:
  Currently libnss-sss and libpam-sss are marked as recommended on the
  sssd-common package. This however causes issues on systems that have
  installing recommended packages turned off (which I noticed was
  enabled on a VPS).

  The fact that those libaries are not installed means that the client
  install is not able to get a working setup running. It would probably
  be best if freeipa-client had a dependency on libnss-sss and libpam-
  nss as they're essentially necessary to get a working setup.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/freeipa/+bug/1600513/+subscriptions

References

[Bug 1600513] [NEW] Depend on libnss-sss and libpam-sss
From: Marlin Cremers, 2016-07-09