ALSA-2024:2571

See a problem?
Please try reporting it to the source first.
Source
https://errata.almalinux.org/9/ALSA-2024-2571.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:2571.json
JSON Data
https://api.test.osv.dev/v1/vulns/ALSA-2024:2571
Related
Published
2024-04-30T00:00:00Z
Modified
2024-05-07T15:07:15Z
Summary
Moderate: sssd security and bug fix update
Details

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.

Security Fix(es):

  • sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758)

Bug Fix(es):

  • socket leak (JIRA:AlmaLinux-22340)
  • Passkey cannot fall back to password (JIRA:AlmaLinux-28161)
  • sssd: Race condition during authorization leads to GPO policies functioning inconsistently (JIRA:AlmaLinux-27209)
References

Affected packages

AlmaLinux:9

libipa_hbac

Package

Name
libipa_hbac
Purl
pkg:rpm/almalinux/libipa_hbac

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_autofs

Package

Name
libsss_autofs
Purl
pkg:rpm/almalinux/libsss_autofs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_certmap

Package

Name
libsss_certmap
Purl
pkg:rpm/almalinux/libsss_certmap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_idmap

Package

Name
libsss_idmap
Purl
pkg:rpm/almalinux/libsss_idmap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_nss_idmap

Package

Name
libsss_nss_idmap
Purl
pkg:rpm/almalinux/libsss_nss_idmap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_nss_idmap-devel

Package

Name
libsss_nss_idmap-devel
Purl
pkg:rpm/almalinux/libsss_nss_idmap-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_simpleifp

Package

Name
libsss_simpleifp
Purl
pkg:rpm/almalinux/libsss_simpleifp

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

libsss_sudo

Package

Name
libsss_sudo
Purl
pkg:rpm/almalinux/libsss_sudo

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

python3-libipa_hbac

Package

Name
python3-libipa_hbac
Purl
pkg:rpm/almalinux/python3-libipa_hbac

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

python3-libsss_nss_idmap

Package

Name
python3-libsss_nss_idmap
Purl
pkg:rpm/almalinux/python3-libsss_nss_idmap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

python3-sss

Package

Name
python3-sss
Purl
pkg:rpm/almalinux/python3-sss

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

python3-sss-murmur

Package

Name
python3-sss-murmur
Purl
pkg:rpm/almalinux/python3-sss-murmur

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

python3-sssdconfig

Package

Name
python3-sssdconfig
Purl
pkg:rpm/almalinux/python3-sssdconfig

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd

Package

Name
sssd
Purl
pkg:rpm/almalinux/sssd

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-ad

Package

Name
sssd-ad
Purl
pkg:rpm/almalinux/sssd-ad

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-client

Package

Name
sssd-client
Purl
pkg:rpm/almalinux/sssd-client

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-common

Package

Name
sssd-common
Purl
pkg:rpm/almalinux/sssd-common

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-common-pac

Package

Name
sssd-common-pac
Purl
pkg:rpm/almalinux/sssd-common-pac

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-dbus

Package

Name
sssd-dbus
Purl
pkg:rpm/almalinux/sssd-dbus

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-idp

Package

Name
sssd-idp
Purl
pkg:rpm/almalinux/sssd-idp

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-ipa

Package

Name
sssd-ipa
Purl
pkg:rpm/almalinux/sssd-ipa

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-kcm

Package

Name
sssd-kcm
Purl
pkg:rpm/almalinux/sssd-kcm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-krb5

Package

Name
sssd-krb5
Purl
pkg:rpm/almalinux/sssd-krb5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-krb5-common

Package

Name
sssd-krb5-common
Purl
pkg:rpm/almalinux/sssd-krb5-common

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-ldap

Package

Name
sssd-ldap
Purl
pkg:rpm/almalinux/sssd-ldap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-nfs-idmap

Package

Name
sssd-nfs-idmap
Purl
pkg:rpm/almalinux/sssd-nfs-idmap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-passkey

Package

Name
sssd-passkey
Purl
pkg:rpm/almalinux/sssd-passkey

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-polkit-rules

Package

Name
sssd-polkit-rules
Purl
pkg:rpm/almalinux/sssd-polkit-rules

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-proxy

Package

Name
sssd-proxy
Purl
pkg:rpm/almalinux/sssd-proxy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-tools

Package

Name
sssd-tools
Purl
pkg:rpm/almalinux/sssd-tools

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4

sssd-winbind-idmap

Package

Name
sssd-winbind-idmap
Purl
pkg:rpm/almalinux/sssd-winbind-idmap

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.4-6.el9_4