Ubuntu
sssd package

sssd 2.4.1-2ubuntu3 source package in Ubuntu

Changelog

sssd (2.4.1-2ubuntu3) impish; urgency=medium

  * SECURITY UPDATE: shell command injection in sssctl comment
    - debian/patches/CVE-2021-3621.patch: replace system() with execvp() to
      avoid execution of user supplied command in
      src/tools/sssctl/sssctl.c, src/tools/sssctl/sssctl.h,
      src/tools/sssctl/sssctl_data.c, src/tools/sssctl/sssctl_logs.c.
    - CVE-2021-3621

 -- Marc Deslauriers <email address hidden>  Wed, 18 Aug 2021 08:13:38 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Impish
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
utils
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
sssd_2.4.1.orig.tar.gz 7.0 MiB 63428d3baf7486f0d076ee106f24372738f6172086abf884e7a7320030c39141
sssd_2.4.1.orig.tar.gz.asc 488 bytes 7b340dac6cc7939ebadbca856dc2bbd9ff3ea052317688e2e1321354e0d5b403
sssd_2.4.1-2ubuntu3.debian.tar.xz 38.1 KiB c660109c6523eb4313e608c0e079830dd202ee21e7a4198c679f9bdf6afc3502
sssd_2.4.1-2ubuntu3.dsc 5.1 KiB 4197042ca27bcfa528cde4b9a53e26f4c22e210ce21160144811f176b0c36b30

Available diffs

View changes file

Binary packages built by this source