MiracleLinux 7 : realmd-0.16.1-5.el7 (AXSA:2015-654:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-654:01 advisory. realmd is a DBus system service which manages discovery and enrollment in realms and domains like Active Directory or IPA. The control center uses realmd as t...

realmd: untrusted data is used when configuring sssd.conf and/or smb.conf

A flaw was found in the way realmd parsed certain input when writing configuration into the sssd.conf or smb.conf file. A remote attacker could use this flaw to inject arbitrary configurations into these files via a newline character in an LDAP response...