All errata/sisyphus/ALT-PU-2018-2235-2
ALT-PU-2018-2235-2

Package update sssd in branch sisyphus

Version1.16.3-alt1.S1
Task#211888
Published2026-02-04
Max severityHIGH
Severity:

Closed issues (2)

BDU:2023-03473
HIGH7.5

Уязвимость сервиса управления доступом к удаленным каталогам и механизма аутентификации sssd, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальным данным

Published: 2023-06-30Modified: 2024-09-30
CVSS 3.xHIGH 7.5
CVSS:3.x/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.0HIGH 7.8
CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:N/A:N
References
CVE-2018-10852
HIGH7.5

The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD has too wide permissions, which means that anyone who can send a message using the same raw protocol that sudo and SSSD use can read the sudo rules available for any user. This affects versions of SSSD before 1.16.3.

Published: 2018-06-26Modified: 2024-11-21
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS 3.xHIGH 7.5
CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References