Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

sssd-2.12.0-1.el10 RPM for aarch64

From CentOS Stream 10 BaseOS for aarch64

Name: sssd Distribution: CentOS
Version: 2.12.0 Vendor: CentOS
Release: 1.el10 Build date: Thu Jan 15 21:57:57 2026
Group: Unspecified Build host: aarch64-03.stream.rdu2.redhat.com
Size: 35147 Source RPM: sssd-2.12.0-1.el10.src.rpm
Packager: builder@centos.org
Url: https://github.com/SSSD/sssd/
Summary: System Security Services Daemon
 
Provides a set of daemons to manage access to remote directories and
authentication mechanisms. It provides an NSS and PAM interface toward
the system and a pluggable back end system to connect to multiple different
account sources. It is also the basis to provide client auditing and policy
services for projects like FreeIPA.

The sssd subpackage is a meta-package that contains the daemon as well as all
the existing back ends.

Provides

Requires

License

GPL-3.0-or-later

Changelog

* Thu Jan 15 2026 Sumit Bose <sbose@redhat.com> - 2.12.0-1
  - Resolves: RHEL-139110 - Rebase SSSD for RHEL 10.2
  - Resolves: RHEL-132552 - sssd_be: segfault at 8 ip 00007f6fd25b2b90 sp 00007ffc02dfbae0 error 4 in libsss_ipa.so[7f6fd25ae000+4d000]
  - Resolves: RHEL-132505 - RFE: package LDAP provider support for subid ranges
  - Resolves: RHEL-130571 - SSSD: change a default value of 'session_provider' sssd.conf option to 'none'
  - Resolves: RHEL-129636 - sssd service fails to start after updating to 2.9.6-4 or 2.9.7-4
  - Resolves: RHEL-128594 - 'sssd_nss' hangs when looking up an object by ID that has expired cache entry and filtered out by name
  - Resolves: RHEL-127792 - Remove SSSD option ipa_enable_dns_sites
  - Resolves: RHEL-120501 - Crash in 'sss_client/autofs/sss_autofs.c'
  - Resolves: RHEL-120287 - CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems [rhel-10.2]
  - Resolves: RHEL-114468 - Spam in 'sssd_kcm.log' during normal operations
  - Resolves: RHEL-113111 - Including innapropriate IPv6 addresses in dyndns_update
  - Resolves: RHEL-104221 - The SSSD cache is filled with groups having GID=0, causing the cache index to grow excessively large. This, in turn, leads to timeouts
  - Resolves: RHEL-94545 - When the user name of an AD user in an IPA-AD trust environment overwritten, the user private group, the users primary group, cannot be lookup up by the overwritten name.
  - Resolves: RHEL-77184 - AD user in external group is not cleared when expiring the cache
  - Resolves: RHEL-72935 - sss_override does not work on AD UPN
  - Resolves: RHEL-11913 - GDM Support for IdM IdP feature and MFA [SSSD]
  - Resolves: RHEL-4990 - [RFE] SSSD support for Azure AD / Microsoft Entra ID (or general direct support of OIDC authentication)
* Mon Sep 22 2025 Pavel Filipenský <pfilipen@redhat.com> - 2.11.1-3
  - Related: RHEL-114545 - Rebase Samba to the latest 4.23.x release
* Thu Aug 14 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.11.1-2
  - Related: RHEL-77184 - AD user in external group is not cleared when expiring the cache
    Patch used to fix this ticket causes a regression (RHEL-106987) and is being reverted.
* Thu Jul 31 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.11.1-1
  - Resolves: RHEL-95058 - Rebase SSSD for RHEL 10.1
  - Resolves: RHEL-77184 - AD user in external group is not cleared when expiring the cache
* Fri Jun 13 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.11.0-3
  - Related: RHEL-89870 - Rebase Samba to the latest 4.22.x release
* Fri Jun 06 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.11.0-2
  - Resolves: RHEL-95058 - Rebase SSSD for RHEL 10.1
* Thu Jun 05 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.11.0-1
  - Resolves: RHEL-95058 - Rebase SSSD for RHEL 10.1
  - Resolves: RHEL-4976 - [RFE] Continue searching other PKCS#11 tokens if certificates are not found
  - Resolves: RHEL-87200 - SSSD fails to connect with ipv4_first when on a machine with only IPv6 and server is dual-stack
  - Resolves: RHEL-25593 - Improve sssd-simple man page description
  - Resolves: RHEL-14752 - [RFE] Add IPA subdomain support to allow IPA-IPA trust
  - Resolves: RHEL-92569 - SSSD LDAPU1 Mapping braces problem
  - Resolves: RHEL-4981 - p11_child currently has an infinite timeout
  - Resolves: RHEL-5042 - IDM homedir %o is not working, returns /home/domain/user instead of AD POSIX unixHomeDir
  - Resolves: RHEL-13086 - [RFE] Anonymous bind requests on RootDSE
  - Resolves: RHEL-45824 - SSSD unable to enumerate LDAP groups if LDAP server contains any group with # character in their names
* Fri May 02 2025 Andrea Bolognani <abologna@redhat.com> - 2.10.2-4
  - Resolves: RHEL-89474 - Fails to build on riscv64
* Mon Apr 07 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.10.2-3.2
  - Resolves: RHEL-79158 - Disk cache failure with large db sizes
* Wed Apr 02 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.10.2-3.1
  - Resolves: RHEL-79158 - Disk cache failure with large db sizes
* Wed Feb 12 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.10.2-3
  - Resolves: RHEL-78061 - 'sssd_kcm' leaks memory
* Mon Feb 10 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.10.2-2
  - Resolves: RHEL-78061 - 'sssd_kcm' leaks memory
* Wed Jan 29 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.10.2-1
  - Resolves: RHEL-62725 - Rebase SSSD for RHEL 10.0
* Wed Dec 18 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.1-3
  - Resolves: RHEL-62725 - Rebase SSSD for RHEL 10.0
* Wed Dec 18 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.1-2
  - Resolves: RHEL-62725 - Rebase SSSD for RHEL 10.0
* Tue Dec 10 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.1-1
  - Resolves: RHEL-62725 - Rebase SSSD for RHEL 10.0
  - Resolves: RHEL-4984 - Mismatch between input and parsed domain name when default_domain_suffix is set.
  - Resolves: RHEL-65848 - sssd password authentication broken in sssd-2.10.0~beta2-2 and later
  - Resolves: RHEL-67669 - Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option
  - Resolves: RHEL-68421 - sssd ldap_child process segfaults when krb5.conf is invalid [rhel-10]
  - Resolves: RHEL-66935 - Avoid log flooding in case an app keeps making invalid `getservbyport(0, ...)` request
  - Resolves: RHEL-65736 - ipa: sudo commands doesn't check threshold correctly
  - Resolves: RHEL-68319 - Please deprecate/remove ad_allow_remote_domain_local_groups
* Mon Oct 21 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0-3
  - Related: RHEL-59777 - Rebase Samba to the latest 4.21.x release
* Tue Oct 15 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0-2
  - Resolves: RHEL-62725 - Rebase SSSD for RHEL 10.0
* Tue Oct 15 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0-1
  - Resolves: RHEL-62725 - Rebase SSSD for RHEL 10.0
  - Resolves: RHEL-56701 - sss_ssh_knownhosts is breaking ansible-pull
  - Resolves: RHEL-55993 - SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not
* Thu Aug 22 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0~beta2-3
  - Resolves: RHEL-50243 - Please install sssd-polkit-rules by default
* Fri Aug 02 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0~beta2-2
  - Resolves: RHEL-51891 - [RHEL-10]logrotate.service fails to start because /var/log/sssd has insecure permission
  - Resolves: RHEL-52400 - SYSDB: remove index on dataExpireTimestamp [rhel-10]
  - Resolves: RHEL-50243 - Please install sssd-polkit-rules by default
* Wed Jun 26 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0~beta2-1
  - Resolves: RHEL-40253 - Rebase SSSD for RHEL 10-beta
  - Resolves: RHEL-43259 - sudo does not work any more with krb ticket
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 2.10.0~beta1-2
  - Bump release for June 2024 mass rebuild
* Thu Jun 06 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.10.0~beta1-1
  - Resolves: RHEL-40253 - Rebase SSSD for RHEL 10-beta
  - Resolves: RHEL-29303 - Issue discovered by static analyzer.
  - Resolves: RHEL-11181 - sssd[4022110]: gencache_init: Failed to create directory: //.cache/samba - Permission denied
  - Resolves: RHEL-4986 - [RFE] sssd use systemd-sysusers
  - Resolves: RHEL-4974 - sssd status shows error "krb5_kt_start_seq_get failed: Permission denied" when running as unprivileged user 'sssd'
* Thu Feb 22 2024 Troy Dawson <tdawson@redhat.com> - 2.9.4-6
  - Bump release to rebuild on correct samba
* Fri Feb 16 2024 Stephen Gallagher <sgallagh@redhat.com> - 2.9.4-5
  - Resolves: RHEL-25985 - FTBFS due to OpenSSL 3.2
* Fri Feb 02 2024 Stephen Gallagher <sgallagh@redhat.com> - 2.9.4-5
  - Restore i686 on Fedora ELN
* Wed Jan 31 2024 Guenther Deschner <gdeschner@redhat.com> - 2.9.4-4
  - Fix the build with Samba 4.20
* Thu Jan 18 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-3
  - Disable enumeration support for IPA and AD providers.
    Deprecation was announced in F39 release notes:
    https://docs.fedoraproject.org/en-US/fedora/latest/release-notes/sysadmin/Security/#_support_for_the_enumeration_feature_has_been_deprecated_for_ad_and_ipa_backends
    This is a backport of upstream patch:
    https://github.com/SSSD/sssd/commit/9240bca7dcc28371ae5dce31c01e85d28409cd04

Files

/usr/share/licenses/sssd
/usr/share/licenses/sssd/COPYING

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Feb 3 04:00:53 2026