11 matches found
Astra Linux - уязвимость в sudo
A flaw was discovered in sudo’s handling of ipahostname. In this process, the ipahostname value from /etc/sssd/sssd.conf was not propagated to sudo. As a result, this leads to a privilege management vulnerability in applications, where client hosts retain privileges even after those privileges ha...
MiracleLinux 7 : realmd-0.16.1-5.el7 (AXSA:2015-654:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-654:01 advisory. realmd is a DBus system service which manages discovery and enrollment in realms and domains like Active Directory or IPA. The control center uses realmd as t...
SUSE-SU-2025:21084-1 Security update for sssd
This update for sssd fixes the following issues: - CVE-2025-11561: Fixed default Kerberos configuration allowing privilege escalation on AD-joined Linux systems bsc1251827 Other fixes: - Install file in krb5.conf.d to include sssd krb5 config snippets bsc1244325...
The vulnerability in the sudo system administration program relates to improper privilege management. This allows a malicious actor to bypass existing security restrictions and retain their privileges after they are revoked.
The vulnerability in the sudo system administration program relates to improper privilege management when processing ipahostname. In this case, ipahostname, which is located in /etc/sssd/sssd.conf, was not propagated to sudo. Exploiting this vulnerability allows a malicious actor to bypass existi...
SUSE CVE-2023-7090
A flaw was found in sudo in the handling of ipahostname, where ipahostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them...
DEBIAN-CVE-2023-7090
A flaw was found in sudo in the handling of ipahostname, where ipahostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them...
PT-2023-8568 · Sudo +2 · Sudo +2
Name of the Vulnerable Software and Affected Versions: sudo affected versions not specified Description: A flaw was found in sudo in the handling of ipa hostname, where ipa hostname from /etc/sssd/sssd.conf was not propagated in sudo. This leads to a privilege mismanagement issue in applications,...
RedHat Update for authconfig RHSA-2017:2285-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
realmd: untrusted data is used when configuring sssd.conf and/or smb.conf
A flaw was found in the way realmd parsed certain input when writing configuration into the sssd.conf or smb.conf file. A remote attacker could use this flaw to inject arbitrary configurations into these files via a newline character in an LDAP response...
DEBIAN-CVE-2015-2704
realmd allows remote attackers to inject arbitrary configurations in to sssd.conf and smb.conf via a newline character in an LDAP response...
UBUNTU-CVE-2015-2704
realmd allows remote attackers to inject arbitrary configurations in to sssd.conf and smb.conf via a newline character in an LDAP response...