sssd security update

2024-06-1413:59:16

Rockylinux Product Errata

errata.rockylinux.org

sssd update

rocky linux 8

security fix

cve-2023-3758

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.2%

JSON

An update is available for sssd.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.

Security Fix(es):

sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
rocky8aarch64libipa_hbac< 2.9.4-3.el8_10libipa_hbac-0:2.9.4-3.el8_10.aarch64.rpm
rocky8i686libipa_hbac< 2.9.4-3.el8_10libipa_hbac-0:2.9.4-3.el8_10.i686.rpm
rocky8x86_64libipa_hbac< 2.9.4-3.el8_10libipa_hbac-0:2.9.4-3.el8_10.x86_64.rpm
rocky8aarch64libipa_hbac-debuginfo< 2.9.4-3.el8_10libipa_hbac-debuginfo-0:2.9.4-3.el8_10.aarch64.rpm
rocky8i686libipa_hbac-debuginfo< 2.9.4-3.el8_10libipa_hbac-debuginfo-0:2.9.4-3.el8_10.i686.rpm
rocky8x86_64libipa_hbac-debuginfo< 2.9.4-3.el8_10libipa_hbac-debuginfo-0:2.9.4-3.el8_10.x86_64.rpm
rocky8aarch64libsss_autofs< 2.9.4-3.el8_10libsss_autofs-0:2.9.4-3.el8_10.aarch64.rpm
rocky8x86_64libsss_autofs< 2.9.4-3.el8_10libsss_autofs-0:2.9.4-3.el8_10.x86_64.rpm
rocky8aarch64libsss_autofs-debuginfo< 2.9.4-3.el8_10libsss_autofs-debuginfo-0:2.9.4-3.el8_10.aarch64.rpm
rocky8x86_64libsss_autofs-debuginfo< 2.9.4-3.el8_10libsss_autofs-debuginfo-0:2.9.4-3.el8_10.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
rocky	8	aarch64	libipa_hbac	< 2.9.4-3.el8_10	libipa_hbac-0:2.9.4-3.el8_10.aarch64.rpm
rocky	8	i686	libipa_hbac	< 2.9.4-3.el8_10	libipa_hbac-0:2.9.4-3.el8_10.i686.rpm
rocky	8	x86_64	libipa_hbac	< 2.9.4-3.el8_10	libipa_hbac-0:2.9.4-3.el8_10.x86_64.rpm
rocky	8	aarch64	libipa_hbac-debuginfo	< 2.9.4-3.el8_10	libipa_hbac-debuginfo-0:2.9.4-3.el8_10.aarch64.rpm
rocky	8	i686	libipa_hbac-debuginfo	< 2.9.4-3.el8_10	libipa_hbac-debuginfo-0:2.9.4-3.el8_10.i686.rpm
rocky	8	x86_64	libipa_hbac-debuginfo	< 2.9.4-3.el8_10	libipa_hbac-debuginfo-0:2.9.4-3.el8_10.x86_64.rpm
rocky	8	aarch64	libsss_autofs	< 2.9.4-3.el8_10	libsss_autofs-0:2.9.4-3.el8_10.aarch64.rpm
rocky	8	x86_64	libsss_autofs	< 2.9.4-3.el8_10	libsss_autofs-0:2.9.4-3.el8_10.x86_64.rpm
rocky	8	aarch64	libsss_autofs-debuginfo	< 2.9.4-3.el8_10	libsss_autofs-debuginfo-0:2.9.4-3.el8_10.aarch64.rpm
rocky	8	x86_64	libsss_autofs-debuginfo	< 2.9.4-3.el8_10	libsss_autofs-debuginfo-0:2.9.4-3.el8_10.x86_64.rpm