Advisories ยป MGASA-2017-0421

Updated sssd packages fix security vulnerability

Publication date: 20 Nov 2017
Type: security
Affected Mageia releases : 6
CVE: CVE-2017-12173


SSSD stores its cached data in an LDAP like local database file using
libldb. To lookup cached data LDAP search filters like
'(objectClass=user) (name=user_name)' are used. However, in
sysdb_search_user_by_upn_res(), the input is not sanitized and allows to
manipulate the search filter for cache lookups. This would allow a
logged in user to discover the password hash of a different user