sssd-1.9.5

OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=95
2013-05-02 09:38:26 +00:00
parent 4ebd417d39
commit d670356e53
11 changed files with 37 additions and 2438 deletions
--- a/sssd.changes
+++ b/sssd.changes
@@ -1,3 +1,27 @@
+-------------------------------------------------------------------
+Thu May  2 09:20:49 UTC 2013 - jengelh@inai.de
+
+- Update to new upstream release 1.9.5
+* Includes a fix for CVE-2013-0287: A simple access provider flaw
+  prevents intended ACL use when SSSD is configured as an Active
+  Directory client.
+* Fixed spurious password expiration warning that was printed on
+  login with the Kerberos back end.
+* A new option ldap_rfc2307_fallback_to_local_users was added. If
+  this option is set to true, SSSD is be able to resolve local
+  group members of LDAP groups.
+* Fixed an indexing bug that prevented the contents of autofs maps
+  from being returned to the automounter deamon in case the map
+  contained a large number of entries.
+* Several fixes for safer handling of Kerberos credential caches
+  for cases where the ccache is set to be stored in a DIR: type.
+- Remove Provide-a-be_get_account_info_send-function.patch,
+  Add-unit-tests-for-simple-access-test-by-groups.patch,
+  Do-not-compile-main-in-DP-if-UNIT_TESTING-is-defined.patch,
+  Resolve-GIDs-in-the-simple-access-provider.patch
+  (CVE-2013-0287 material is in upstream),
+  sssd-sysdb-binary-attrs.diff (merged upstream)
+
 -------------------------------------------------------------------
 Fri Apr  5 16:35:07 UTC 2013 - jengelh@inai.de