7 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-0249
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The System Security Services Daemon SSSD 1.11.6 does not properly identify group membership when a non- POSIX group is in a group membership chain, which allows...
SUSE CVE-2014-0249
The System Security Services Daemon SSSD 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to bypass access restrictions via unspecified vectors...
SUSE: Security Advisory (SUSE-SU-2016:2579-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : sssd (SUSE-SU-2016:2579-1)
This update for sssd fixes one security issue and three bugs. The following vulnerability was fixed : - CVE-2014-0249: Incorrect expansion of group membership when encountering a non-POSIX group. bsc880245 The following non-security fixes were also included : - Prevent crashes of statically linke...
openSUSE Security Update : sssd (openSUSE-SU-2014:1407-1)
sssd was updated to new upstream release 1.12.2 bugfix release, bnc900159 Changes : - Fixed a regression where the IPA provider did not fetch User Private Groups correctly - An important bug in the GPO access control which resulted in a wrong principal being used, was fixed. - Several new options...
CVE-2014-0249
The System Security Services Daemon SSSD 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to bypass access restrictions via unspecified vectors...
CVE-2014-0249
The CVE-2014-0249 issue affects SSSD 1.11.6, where group membership is not correctly identified for non-POSIX groups in a membership chain, potentially allowing local users to bypass access restrictions. Public documents confirm the vulnerability in SSSD and show vendor-advised fixes were release...