|
|
Subscribe / Log in / New account

sssd: memory leak

Package(s):sssd CVE #(s):CVE-2015-5292
Created:October 20, 2015 Updated:December 22, 2015
Description: From the Red Hat CVE entry:

It was found that SSSD's Privilege Attribute Certificate (PAC) responder plug-in would leak a small amount of memory on each authentication request. A remote attacker could potentially use this flaw to exhaust all available memory on the system by making repeated requests to a Kerberized daemon application configured to authenticate using the PAC responder plug-in.

Alerts:
Scientific Linux SLSA-2015:2355-1 sssd 2015-12-21
Red Hat RHSA-2015:2355-01 sssd 2015-11-19
Oracle ELSA-2015-2019 sssd 2015-11-10
CentOS CESA-2015:2019 sssd 2015-11-10
Scientific Linux SLSA-2015:2019-1 sssd 2015-11-10
Red Hat RHSA-2015:2019-01 sssd 2015-11-10
Fedora FEDORA-2015-cdea5324a8 sssd 2015-10-20
Fedora FEDORA-2015-7b47df69d3 sssd 2015-10-20
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds