ID CVE-2019-3811
Summary A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions before 2.1 are vulnerable.
References
Vulnerable Configurations
  • cpe:2.3:a:fedoraproject:sssd:-:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:-:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.99.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.99.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:0.99.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:0.99.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.0.99:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.0.99:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.1.91:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.1.91:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.1.92:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.1.92:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.2.91:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.2.91:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.5:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.6:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.7:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.7:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.8:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.8:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.9:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.9:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.10:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.10:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.11:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.11:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.12:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.12:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.13:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.13:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.14:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.14:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.15:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.15:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.16:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.16:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.5.17:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.5.17:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.6.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.6.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.6.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.0:beta1:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.0:beta1:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.0:beta2:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.0:beta2:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.0:beta3:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.0:beta3:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.5:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.10.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.10.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.5:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.6:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.6:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.7:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.7:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.11.8:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.11.8:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.12.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.12.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.12.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.12.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.12.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.12.5:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.12.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.13.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.13.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.13.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.13.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.13.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.13.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.13.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.13.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.13.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.13.5:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.13.5:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.14.0:-:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.14.0:-:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.14.0:alpha1:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.14.0:alpha1:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.14.0:beta1:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.14.0:beta1:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.14.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.14.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.14.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.15.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.15.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.15.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.15.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.15.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.15.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.15.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.15.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.16.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.16.1:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.16.2:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.16.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.16.3:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.16.3:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:1.16.4:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:1.16.4:*:*:*:*:*:*:*
  • cpe:2.3:a:fedoraproject:sssd:2.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fedoraproject:sssd:2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:-:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:-:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
CVSS
Base: 2.7 (as of 02-11-2021 - 20:07)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
ADJACENT_NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:A/AC:L/Au:S/C:N/I:N/A:P
redhat via4
advisories
bugzilla
id 1711832
title The files provider does not handle resetOffline properly
oval
OR
  • comment Red Hat Enterprise Linux must be installed
    oval oval:com.redhat.rhba:tst:20070304026
  • AND
    • comment Red Hat Enterprise Linux 7 is installed
      oval oval:com.redhat.rhba:tst:20150364027
    • OR
      • AND
        • comment libipa_hbac is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177001
        • comment libipa_hbac is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375002
      • AND
        • comment libipa_hbac-devel is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177003
        • comment libipa_hbac-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375004
      • AND
        • comment libsss_autofs is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177005
        • comment libsss_autofs is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20130508008
      • AND
        • comment libsss_certmap is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177007
        • comment libsss_certmap is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20173379008
      • AND
        • comment libsss_certmap-devel is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177009
        • comment libsss_certmap-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20173379010
      • AND
        • comment libsss_idmap is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177011
        • comment libsss_idmap is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375008
      • AND
        • comment libsss_idmap-devel is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177013
        • comment libsss_idmap-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375010
      • AND
        • comment libsss_nss_idmap is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177015
        • comment libsss_nss_idmap is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375012
      • AND
        • comment libsss_nss_idmap-devel is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177017
        • comment libsss_nss_idmap-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375014
      • AND
        • comment libsss_simpleifp is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177019
        • comment libsss_simpleifp is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150441018
      • AND
        • comment libsss_simpleifp-devel is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177021
        • comment libsss_simpleifp-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150441020
      • AND
        • comment libsss_sudo is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177023
        • comment libsss_sudo is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20130508014
      • AND
        • comment python-libipa_hbac is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177025
        • comment python-libipa_hbac is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20152355018
      • AND
        • comment python-libsss_nss_idmap is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177027
        • comment python-libsss_nss_idmap is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20152355020
      • AND
        • comment python-sss is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177029
        • comment python-sss is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20152355022
      • AND
        • comment python-sss-murmur is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177031
        • comment python-sss-murmur is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20152355024
      • AND
        • comment python-sssdconfig is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177033
        • comment python-sssdconfig is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375018
      • AND
        • comment sssd is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177035
        • comment sssd is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375020
      • AND
        • comment sssd-ad is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177037
        • comment sssd-ad is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375022
      • AND
        • comment sssd-client is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177039
        • comment sssd-client is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375024
      • AND
        • comment sssd-common is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177041
        • comment sssd-common is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375026
      • AND
        • comment sssd-common-pac is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177043
        • comment sssd-common-pac is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375028
      • AND
        • comment sssd-dbus is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177045
        • comment sssd-dbus is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375030
      • AND
        • comment sssd-ipa is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177047
        • comment sssd-ipa is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375032
      • AND
        • comment sssd-kcm is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177049
        • comment sssd-kcm is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20173379050
      • AND
        • comment sssd-krb5 is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177051
        • comment sssd-krb5 is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375034
      • AND
        • comment sssd-krb5-common is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177053
        • comment sssd-krb5-common is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375036
      • AND
        • comment sssd-ldap is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177055
        • comment sssd-ldap is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375038
      • AND
        • comment sssd-libwbclient is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177057
        • comment sssd-libwbclient is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150441044
      • AND
        • comment sssd-libwbclient-devel is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177059
        • comment sssd-libwbclient-devel is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20150441046
      • AND
        • comment sssd-polkit-rules is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177061
        • comment sssd-polkit-rules is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20173379062
      • AND
        • comment sssd-proxy is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177063
        • comment sssd-proxy is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375040
      • AND
        • comment sssd-tools is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177065
        • comment sssd-tools is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhba:tst:20141375042
      • AND
        • comment sssd-winbind-idmap is earlier than 0:1.16.4-21.el7
          oval oval:com.redhat.rhsa:tst:20192177067
        • comment sssd-winbind-idmap is signed with Red Hat redhatrelease2 key
          oval oval:com.redhat.rhsa:tst:20173379068
rhsa
id RHSA-2019:2177
released 2019-08-06
severity Moderate
title RHSA-2019:2177: sssd security, bug fix, and enhancement update (Moderate)
rpms
  • libipa_hbac-0:1.16.4-21.el7
  • libipa_hbac-devel-0:1.16.4-21.el7
  • libsss_autofs-0:1.16.4-21.el7
  • libsss_certmap-0:1.16.4-21.el7
  • libsss_certmap-devel-0:1.16.4-21.el7
  • libsss_idmap-0:1.16.4-21.el7
  • libsss_idmap-devel-0:1.16.4-21.el7
  • libsss_nss_idmap-0:1.16.4-21.el7
  • libsss_nss_idmap-devel-0:1.16.4-21.el7
  • libsss_simpleifp-0:1.16.4-21.el7
  • libsss_simpleifp-devel-0:1.16.4-21.el7
  • libsss_sudo-0:1.16.4-21.el7
  • python-libipa_hbac-0:1.16.4-21.el7
  • python-libsss_nss_idmap-0:1.16.4-21.el7
  • python-sss-0:1.16.4-21.el7
  • python-sss-murmur-0:1.16.4-21.el7
  • python-sssdconfig-0:1.16.4-21.el7
  • sssd-0:1.16.4-21.el7
  • sssd-ad-0:1.16.4-21.el7
  • sssd-client-0:1.16.4-21.el7
  • sssd-common-0:1.16.4-21.el7
  • sssd-common-pac-0:1.16.4-21.el7
  • sssd-dbus-0:1.16.4-21.el7
  • sssd-debuginfo-0:1.16.4-21.el7
  • sssd-ipa-0:1.16.4-21.el7
  • sssd-kcm-0:1.16.4-21.el7
  • sssd-krb5-0:1.16.4-21.el7
  • sssd-krb5-common-0:1.16.4-21.el7
  • sssd-ldap-0:1.16.4-21.el7
  • sssd-libwbclient-0:1.16.4-21.el7
  • sssd-libwbclient-devel-0:1.16.4-21.el7
  • sssd-polkit-rules-0:1.16.4-21.el7
  • sssd-proxy-0:1.16.4-21.el7
  • sssd-tools-0:1.16.4-21.el7
  • sssd-winbind-idmap-0:1.16.4-21.el7
refmap via4
bid 106644
confirm https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3811
mlist [debian-lts-announce] 20190117 [SECURITY] [DLA 1635-1] sssd security update
suse
  • openSUSE-SU-2019:0344
  • openSUSE-SU-2019:1174
Last major update 02-11-2021 - 20:07
Published 15-01-2019 - 15:29
Last modified 02-11-2021 - 20:07
Back to Top