Lucene search

K
fedoraFedoraFEDORA:008802051009
HistoryApr 25, 2024 - 1:01 a.m.

[SECURITY] Fedora 40 Update: sssd-2.9.4-7.fc40

2024-04-2501:01:31
lists.fedoraproject.org
8
fedora 40
update
sssd-2.9.4-7.fc40
daemons
remote directories
authentication
nss
pam
pluggable back end
account sources
client auditing
policy services
freeipa
subpackage
meta-package
unix

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.1%

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA. The sssd subpackage is a meta-package that contains the daemon as well as a ll the existing back ends.

OSVersionArchitecturePackageVersionFilename
Fedora40anysssd< 2.9.4UNKNOWN

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.1%