Bug | jessie | stretch | buster | bullseye | bookworm | sid | Description |
---|
CVE-2023-3758 | vulnerable (no DSA, postponed) | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | A race condition flaw was found in sssd where the GPO policy is not co ... |
CVE-2021-3621 | fixed | fixed | fixed | vulnerable (no DSA) | fixed | fixed | A flaw was found in SSSD, where the sssctl command was vulnerable to s ... |
CVE-2019-3811 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | fixed | A vulnerability was found in sssd. If a user was configured with no ho ... |
CVE-2018-16883 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | sssd versions from 1.13.0 to before 2.0.0 did not properly restrict ac ... |
CVE-2018-16838 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | fixed | A flaw was found in sssd Group Policy Objects implementation. When the ... |
CVE-2018-10852 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | fixed | The UNIX pipe which sudo uses to contact SSSD and read the available s ... |
CVE-2015-5292 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | Memory leak in the Privilege Attribute Certificate (PAC) responder plu ... |
Bug | Description |
---|
CVE-2022-4254 | sssd: libsss_certmap fails to sanitise certificate data used in LDAP f ... |
CVE-2017-12173 | It was found that sssd's sysdb_search_user_by_upn_res() function befor ... |
CVE-2014-0249 | The System Security Services Daemon (SSSD) 1.11.6 does not properly id ... |
CVE-2013-0287 | The Simple Access Provider in System Security Services Daemon (SSSD) 1 ... |
CVE-2013-0220 | The (1) sss_autofs_cmd_getautomntent and (2) sss_autofs_cmd_getautomnt ... |
CVE-2013-0219 | System Security Services Daemon (SSSD) before 1.9.4, when (1) creating ... |
CVE-2012-3462 | A flaw was found in SSSD version 1.9.0. The SSSD's access-provider log ... |
CVE-2011-1758 | The krb5_save_ccname_done function in providers/krb5/krb5_auth.c in Sy ... |
CVE-2010-4341 | The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in ... |
CVE-2010-2940 | The auth_send function in providers/ldap/ldap_auth.c in System Securit ... |
CVE-2010-0014 | System Security Services Daemon (SSSD) before 1.0.1, when the krb5 aut ... |
CVE-2009-2410 | The local_handler_callback function in server/responder/pam/pam_LOCAL_ ... |