Detections
Analytics
openSUSE Security Update : sssd (openSUSE-2016-1238)
low Nessus Plugin ID 94312
Language:
Synopsis
The remote openSUSE host is missing a security update.Description
This update for sssd fixes one security issue and three bugs.The following vulnerability was fixed :
- CVE-2014-0249: Incorrect expansion of group membership when encountering a non-POSIX group. (bsc#880245)
The following non-security fixes were also included :
- Prevent crashes of statically linked binaries using getpwuid when sssd is used and nscd is turned off or has caching disabled. (bsc#993582)
- Add logrotate configuration to prevent log files from growing too large when running with debug mode enabled.
(bsc#1004220)
- Order sudo rules by the same logic used by the native LDAP support from sudo. (bsc#1002973)
This update was imported from the SUSE:SLE-12-SP1:Update update project.
Solution
Update the affected sssd packages.See Also
https://bugzilla.opensuse.org/show_bug.cgi?id=1002973
https://bugzilla.opensuse.org/show_bug.cgi?id=1004220
Plugin Details
Severity: Low
ID: 94312
File Name: openSUSE-2016-1238.nasl
Version: 2.3
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 10/27/2016
Updated: 1/19/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.4
CVSS v2
Risk Factor: Low
Base Score: 3.3
Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:N
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:sssd, p-cpe:/a:novell:opensuse:libsss_nss_idmap0-debuginfo, p-cpe:/a:novell:opensuse:sssd-krb5, p-cpe:/a:novell:opensuse:sssd-ipa-debuginfo, p-cpe:/a:novell:opensuse:sssd-ipa, p-cpe:/a:novell:opensuse:sssd-debuginfo-32bit, p-cpe:/a:novell:opensuse:sssd-debugsource, p-cpe:/a:novell:opensuse:sssd-ad-debuginfo, p-cpe:/a:novell:opensuse:libsss_idmap0, p-cpe:/a:novell:opensuse:libsss_nss_idmap0, p-cpe:/a:novell:opensuse:sssd-krb5-common, p-cpe:/a:novell:opensuse:libsss_sudo-debuginfo, p-cpe:/a:novell:opensuse:python-ipa_hbac, p-cpe:/a:novell:opensuse:libipa_hbac-devel, p-cpe:/a:novell:opensuse:python-ipa_hbac-debuginfo, p-cpe:/a:novell:opensuse:python-sss_nss_idmap, p-cpe:/a:novell:opensuse:sssd-krb5-common-debuginfo, p-cpe:/a:novell:opensuse:sssd-proxy, p-cpe:/a:novell:opensuse:sssd-tools-debuginfo, p-cpe:/a:novell:opensuse:sssd-32bit, p-cpe:/a:novell:opensuse:sssd-krb5-debuginfo, p-cpe:/a:novell:opensuse:sssd-proxy-debuginfo, p-cpe:/a:novell:opensuse:libipa_hbac0, p-cpe:/a:novell:opensuse:sssd-tools, p-cpe:/a:novell:opensuse:sssd-debuginfo, p-cpe:/a:novell:opensuse:sssd-ad, p-cpe:/a:novell:opensuse:libipa_hbac0-debuginfo, p-cpe:/a:novell:opensuse:sssd-ldap-debuginfo, p-cpe:/a:novell:opensuse:libsss_idmap-devel, cpe:/o:novell:opensuse:42.1, p-cpe:/a:novell:opensuse:python-sssd-config, p-cpe:/a:novell:opensuse:libsss_idmap0-debuginfo, p-cpe:/a:novell:opensuse:libsss_nss_idmap-devel, p-cpe:/a:novell:opensuse:python-sssd-config-debuginfo, p-cpe:/a:novell:opensuse:libsss_sudo, p-cpe:/a:novell:opensuse:sssd-ldap, p-cpe:/a:novell:opensuse:python-sss_nss_idmap-debuginfo
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 10/26/2016
Reference Information
CVE: CVE-2014-0249