Lucene search

FedoraFEDORA:008802051009

HistoryApr 25, 2024 - 1:01 a.m.

[SECURITY] Fedora 40 Update: sssd-2.9.4-7.fc40

2024-04-2501:01:31

lists.fedoraproject.org

fedora 40

update

sssd-2.9.4-7.fc40

daemons

remote directories

authentication

nss

pam

pluggable back end

account sources

client auditing

policy services

freeipa

subpackage

meta-package

unix

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.1%

JSON

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA. The sssd subpackage is a meta-package that contains the daemon as well as a ll the existing back ends.

OSVersionArchitecturePackageVersionFilename
Fedora40anysssd< 2.9.4UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	40	any	sssd	< 2.9.4	UNKNOWN

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.1%

JSON

Related for FEDORA:008802051009