[Bug 240708] security/sssd: Remove as insecure and dead version

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=240708

            Bug ID: 240708
           Summary: security/sssd: Remove as insecure and dead version
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-bugs at FreeBSD.org
          Reporter: prj at rootwyrm.com
                CC: lukas.slebodnik at intrak.sk
                CC: lukas.slebodnik at intrak.sk
             Flags: maintainer-feedback?(lukas.slebodnik at intrak.sk)

security/sssd is still on 1.11 and the maintainer has not updated this port in
literal years. The port does not function at all with any supported version of
Samba. The last maintainer commit was a URL change in 2017; this version of
sssd is from 2015. 
Bugs have been opened requesting updates to 1.13 (LTM), 1.15, and 2.x since,
with no action and no success. This version may also contain a vulnerability -
CVE-2018-10852 - and is likely to contain unknown vulnerabilities. It also only
functions with known vulnerable versions of Samba.
https://www.cvedetails.com/cve/CVE-2018-10852/

All upstream support for sssd 1.11 was ended more than 3 years ago now. Since
this port cannot function, and no progress has been made in updating to a
supported or functioning version of the port, it should be removed.

-- 
You are receiving this mail because:
You are the assignee for the bug.