Fedoraproject

Sssd

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.67%
  • Veröffentlicht 29.10.2015 16:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Memory leak in the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause a denial of service (memory consumption) via a larg...

  • EPSS 0.34%
  • Veröffentlicht 11.06.2014 14:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The System Security Services Daemon (SSSD) 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to bypass access restrictions via unspecified vectors.

  • EPSS 2.15%
  • Veröffentlicht 21.03.2013 16:55:02
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended ...

  • EPSS 3.32%
  • Veröffentlicht 24.02.2013 19:55:01
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The (1) sss_autofs_cmd_getautomntent and (2) sss_autofs_cmd_getautomntbyname function in responder/autofs/autofssrv_cmd.c and the (3) ssh_cmd_parse_request function in responder/ssh/sshsrv_cmd.c in System Security Services Daemon (SSSD) before 1.9.4 ...

  • EPSS 0.37%
  • Veröffentlicht 24.02.2013 19:55:01
  • Zuletzt bearbeitet 29.04.2026 01:13:23

System Security Services Daemon (SSSD) before 1.9.4, when (1) creating, (2) copying, or (3) removing a user home directory tree, allows local users to create, modify, or delete arbitrary files via a symlink attack on another user's files.

  • EPSS 0.34%
  • Veröffentlicht 26.05.2011 18:55:02
  • Zuletzt bearbeitet 16.06.2026 23:29:58

The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in System Security Services Daemon (SSSD) 1.5.x before 1.5.7, when automatic ticket renewal and offline authentication are configured, uses a pathname string as a password, which allows...

  • EPSS 0.49%
  • Veröffentlicht 25.01.2011 01:00:01
  • Zuletzt bearbeitet 16.06.2026 23:24:35

The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service (infinite loop, crash, and login prevention) via a crafted packet.

  • EPSS 2.02%
  • Veröffentlicht 30.08.2010 20:00:02
  • Zuletzt bearbeitet 16.06.2026 23:21:47

The auth_send function in providers/ldap/ldap_auth.c in System Security Services Daemon (SSSD) 1.3.0, when LDAP authentication and anonymous bind are enabled, allows remote attackers to bypass the authentication requirements of pam_authenticate via a...

  • EPSS 0.69%
  • Veröffentlicht 14.01.2010 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:15:14

System Security Services Daemon (SSSD) before 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstatio...