| Name: | sssd-idp |
|---|---|
| Version: | 2.9.4 |
| Release: | 5.0.2.el8_10.3 |
| Architecture: | aarch64 |
| Group: | Applications/System |
| Size: | 140962 |
| License: | GPLv3+ |
| RPM: | sssd-idp-2.9.4-5.0.2.el8_10.3.aarch64.rpm |
| Source RPM: | sssd-2.9.4-5.0.2.el8_10.3.src.rpm |
| Build Date: | Tue Nov 04 2025 |
| Build Host: | build-ol8-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | https://github.com/SSSD/sssd |
| Summary: | Kerberos plugins and OIDC helper for external identity providers. |
| Description: | This package provides Kerberos plugins that are required to enable authentication against external identity providers. Additionally a helper program to handle the OAuth 2.0 Device Authorization Grant is provided. |
- Missing ntohs to service port [Orabug: 37389651] - Restore default debug level for sss_cache [Orabug: 32810448]
- Resolves: RHEL-112455 - p11_child currently has an infinite timeout [rhel-8.10.z] - Resolves: RHEL-120292 - CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems [rhel-8.10.z]
- Resolves: RHEL-78300 - 'sssd_kcm' leaks memory [rhel-8.10.z] - Resolves: RHEL-82420 - Disk cache failure with large db sizes [rhel-8.10.z] - Resolves: RHEL-76022 - Use the DN from existing entry when updating a cached group [rhel-8.10.z]
- Resolves: RHEL-67671 - Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option [rhel-8.10.z] - Resolves: RHEL-68507 - sssd backend process segfaults when krb5.conf is invalid [rhel-8.10.z] - Resolves: RHEL-66267 - SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not [rhel-8.10.z] - Resolves: RHEL-67128 - Excessive "Domain not found' messages logged to sssd_nss & sssd_be in multidomain AD forest [rhel-8.10.z] - Resolves: RHEL-66272 - sssd is skipping GPO evaluation with auto_private_groups [rhel-8.10.z] - Resolves: RHEL-66277 - possible regression of rhbz#2196521 [rhel-8.10.z]
- Resolves: RHEL-39085 - [RfE] SSSD Failover Enhancements
- Resolves: RHEL-33957 - ad: refresh root domain when read directly
- Resolves: RHEL-27205 - Race condition during authorization leads to GPO policies functioning inconsistently
- Resolves: RHEL-25064 - AD users are unable to log in due to case sensitivity of user because the domain is found as an alias to the email address. [rhel-8] - Resolves: RHEL-25066 - gdm smartcard login fails with sssd-2.9.3 in case of multiple identities [rhel-8] - Resolves: RHEL-25065 - ssh pubkey stored in ldap/AD no longer works to authenticate via sssd [rhel-8]
- Resolves: RHEL-2630 - Rebase SSSD for RHEL 8.10 - Resolves: RHEL-1680 - auto_private_groups does not create cache in IPA server SSSD cache - Resolves: RHEL-10092 - logfile rotation for sssd_kcm not working properly, sssd_kcm never receives a 'kill -HUP' - Resolves: RHEL-17495 - New sssd.conf seems not to be backwards compatible (wrt SmartCard auth of local users using 'files provider') - Resolves: RHEL-18431 - Excessive logging to sssd_nss and sssd_be in multi-domain AD forest - Resolves: RHEL-5033 - Incorrect IdM product name in man sssd.conf - Resolves: RHEL-15368 - SSSD GPO lacks group resolution on hosts [rhel-8] - Resolves: RHEL-10721 - very bad performance when requesting service tickets - Resolves: RHEL-19011 - Invalid handling groups from child domain - Resolves: RHEL-19949 - latest sssd breaks logging in via XDMCP for LDAP/Kerberos users [rhel-8]
- Resolves: RHEL-2630 - Rebase SSSD for RHEL 8.10