Detections
Analytics
RHEL 6 : sssd (RHSA-2011:0560)
medium Nessus Plugin ID 54594
Language:
Synopsis
The remote Red Hat host is missing a security update.Description
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0560 advisory.The System Security Services Daemon (SSSD) provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects such as FreeIPA.
A flaw was found in the SSSD PAM responder that could allow a local attacker to crash SSSD via a carefully-crafted packet. With SSSD unresponsive, legitimate users could be denied the ability to log in to the system. (CVE-2010-4341)
Red Hat would like to thank Sebastian Krahmer for reporting this issue.
This update also fixes several bugs and adds various enhancements.
Documentation for these bug fixes and enhancements will be available shortly from the Technical Notes document, linked to in the References section.
Users of SSSD should upgrade to these updated packages, which upgrade SSSD to upstream version 1.5.1 to correct this issue, and fix the bugs and add the enhancements noted in the Technical Notes.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected sssd, sssd-client and / or sssd-tools packages.See Also
https://access.redhat.com/security/updates/classification/#low
https://bugzilla.redhat.com/show_bug.cgi?id=442680
https://bugzilla.redhat.com/show_bug.cgi?id=598501
https://bugzilla.redhat.com/show_bug.cgi?id=633406
https://bugzilla.redhat.com/show_bug.cgi?id=633487
https://bugzilla.redhat.com/show_bug.cgi?id=640602
https://bugzilla.redhat.com/show_bug.cgi?id=644072
https://bugzilla.redhat.com/show_bug.cgi?id=645438
https://bugzilla.redhat.com/show_bug.cgi?id=645449
https://bugzilla.redhat.com/show_bug.cgi?id=647816
https://bugzilla.redhat.com/show_bug.cgi?id=649286
https://bugzilla.redhat.com/show_bug.cgi?id=658158
https://bugzilla.redhat.com/show_bug.cgi?id=659401
https://bugzilla.redhat.com/show_bug.cgi?id=660323
https://bugzilla.redhat.com/show_bug.cgi?id=661163
https://bugzilla.redhat.com/show_bug.cgi?id=667059
https://bugzilla.redhat.com/show_bug.cgi?id=667326
https://bugzilla.redhat.com/show_bug.cgi?id=667349
https://bugzilla.redhat.com/show_bug.cgi?id=670511
https://bugzilla.redhat.com/show_bug.cgi?id=670763
https://bugzilla.redhat.com/show_bug.cgi?id=670804
https://bugzilla.redhat.com/show_bug.cgi?id=671478
https://bugzilla.redhat.com/show_bug.cgi?id=674141
https://bugzilla.redhat.com/show_bug.cgi?id=674164
https://bugzilla.redhat.com/show_bug.cgi?id=674172
https://bugzilla.redhat.com/show_bug.cgi?id=674515
https://bugzilla.redhat.com/show_bug.cgi?id=675284
https://bugzilla.redhat.com/show_bug.cgi?id=676401
https://bugzilla.redhat.com/show_bug.cgi?id=676911
https://bugzilla.redhat.com/show_bug.cgi?id=677318
https://bugzilla.redhat.com/show_bug.cgi?id=677588
https://bugzilla.redhat.com/show_bug.cgi?id=678091
https://bugzilla.redhat.com/show_bug.cgi?id=678410
https://bugzilla.redhat.com/show_bug.cgi?id=678593
https://bugzilla.redhat.com/show_bug.cgi?id=678614
https://bugzilla.redhat.com/show_bug.cgi?id=678777
https://bugzilla.redhat.com/show_bug.cgi?id=679082
https://bugzilla.redhat.com/show_bug.cgi?id=680367
https://bugzilla.redhat.com/show_bug.cgi?id=682340
https://bugzilla.redhat.com/show_bug.cgi?id=682807
https://bugzilla.redhat.com/show_bug.cgi?id=682850
https://bugzilla.redhat.com/show_bug.cgi?id=683158
https://bugzilla.redhat.com/show_bug.cgi?id=683255
https://bugzilla.redhat.com/show_bug.cgi?id=683860
https://bugzilla.redhat.com/show_bug.cgi?id=683885
https://bugzilla.redhat.com/show_bug.cgi?id=688491
https://bugzilla.redhat.com/show_bug.cgi?id=689886
https://bugzilla.redhat.com/show_bug.cgi?id=690131
https://bugzilla.redhat.com/show_bug.cgi?id=690421
https://bugzilla.redhat.com/show_bug.cgi?id=690866
https://bugzilla.redhat.com/show_bug.cgi?id=691678
https://bugzilla.redhat.com/show_bug.cgi?id=692472
https://bugzilla.redhat.com/show_bug.cgi?id=694146
https://bugzilla.redhat.com/show_bug.cgi?id=694444
https://bugzilla.redhat.com/show_bug.cgi?id=694783
https://bugzilla.redhat.com/show_bug.cgi?id=696972
https://bugzilla.redhat.com/show_bug.cgi?id=701700
http://www.nessus.org/u?06ef2281
Plugin Details
Severity: Medium
ID: 54594
File Name: redhat-RHSA-2011-0560.nasl
Version: 1.18
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 5/20/2011
Updated: 3/24/2025
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.6
Vendor
Vendor Severity: Low
CVSS v2
Risk Factor: Low
Base Score: 2.1
Temporal Score: 1.6
Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P
CVSS Score Source: CVE-2010-4341
CVSS v3
Risk Factor: Medium
Base Score: 5.5
Temporal Score: 4.8
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:sssd-tools, cpe:/o:redhat:enterprise_linux:6, p-cpe:/a:redhat:enterprise_linux:sssd-client, p-cpe:/a:redhat:enterprise_linux:sssd
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Ease: No known exploits are available
Patch Publication Date: 5/19/2011
Vulnerability Publication Date: 1/24/2011
Reference Information
CVE: CVE-2010-4341
BID: 45961
RHSA: 2011:0560