[ol8_baseos_latest] sssd-common-2.4.0-9.0.1.el8_4.1.x86_64

Common files for the SSSD. The common package includes all the files needed
to run a particular back end, however, the back ends are packaged in separate
sub-packages such as sssd-ldap.

Changelog (Show File list) (Show related packages)

• Tue Jun 29 2021 EL Errata <el-errata_ww@oracle.com> - 2.4.0-9.0.1

  - Restore default debug level for sss_cache [Orabug: 32810448]
  - Restore default debug level for shadow-utils tools [Orabug: 32810448]
  - Revert Redhat's change of disallowing duplicated incomplete gid
    when "id_provider=ldap" is used, which caused regression in AD
    environment. [Orabug: 29286774] [Doc ID 2605732.1]

• Mon May 24 2021 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-9.1

  - Resolves: rhbz#1949170 - pam_sss_gss.so doesn't work with large kerberos tickets [rhel-8.4.0.z]
  - Resolves: rhbz#1945656 - No gpo found and ad_gpo_implicit_deny set to True still permits user login [rhel-8.4.0.z]
  - Resolves: rhbz#1945655 - SSSD not detecting subdomain from AD forest (RHEL 8.3) [rhel-8.4.0.z]
  - Resolves: rhbz#1945654 - IPA missing secondary IPA Posix groups in latest sssd 1.16.5-10.el7_9.7 [rhel-8.4.0.z]
  - Resolves: rhbz#1942438 - Wrong default debug level of sssd tools [rhel-8.4.0.z]

• Fri Mar 19 2021 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-9

  - Resolves: rhbz#1899712 - [sssd] RHEL 8.4 Tier 0 Localization

• Fri Feb 12 2021 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-8

  - Resolves: rhbz#1926622 - Add support to verify authentication indicators in pam_sss_gss
  - Resolves: rhbz#1926454 - First smart refresh query contains modifyTimestamp even if the modifyTimestamp is 0.
  - Resolves: rhbz#1893159 - Default debug level should report all errors / failures (additional patch)

• Tue Jan 26 2021 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-7

  - Resolves: rhbz#1920001 - Do not add '%' to group names already prefixed with '%' in IPA sudo rules
  - Resolves: rhbz#1918433 - sssd unable to lookup certmap rules
  - Resolves: rhbz#1917382 - [abrt] [faf] sssd: dp_client_handshake_timeout(): /usr/libexec/sssd/sssd_be killed by 11

• Mon Jan 18 2021 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-6

  - Resolves: rhbz#1113639 - autofs: return a connection failure until maps have been fetched
  - Resolves: rhbz#1915395 - Memory leak in the simple access provider
  - Resolves: rhbz#1915319 - SSSD: SBUS: failures during servers startup
  - Resolves: rhbz#1893698 - [RFE] sudo kerberos authentication (additional patches)

• Mon Dec 28 2020 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-5

  - Resolves: rhbz#1631410 - Can't login with smartcard with multiple certs having same ID value
  - Resolves: rhbz#1884213 - [RFE] add offline_timeout_max config option to control offline interval backoff (additional patches)
  - Resolves: rhbz#1893159 - Default debug level should report all errors / failures
  - Resolves: rhbz#1893698 - [RFE] sudo kerberos authentication

• Mon Dec 21 2020 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-4

  - Resolves: rhbz#1876514 - High CPU utilization by the sssd_kcm process
  - Resolves: rhbz#1876658 - filter_groups option partially filters the group from 'id' output of the user because gidNumber still appears in 'id' output [RHEL 8]
  - Resolves: rhbz#1895001 - User lookups over the InfoPipe responder fail intermittently

• Mon Dec 07 2020 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-3

  - Resolves: rhbz#1900733 - sssd_be segfaults at be_refresh_get_values_ex() due to NULL ptrs in results of sysdb_search_with_ts_attr()
  - Resolves: rhbz#1876514 - High CPU utilization by the sssd_kcm process
  - Resolves: rhbz#1894540 - sssd component logging is now too generic in syslog/journal
  - Resolves: rhbz#1828483 - filtered ID is appearing due to strange negative cache behavior

• Thu Nov 12 2020 Alexey Tikhonov <atikhono@redhat.com> - 2.4.0-2

  - This is to bump version to allow rebuild against rebased libldb.