vulnerability

Huawei EulerOS: CVE-2019-3811: sssd security update

Try Surface Command
Back to search
Severity
3
CVSS
(AV:A/AC:L/Au:S/C:N/I:N/A:P)
Published
Jan 15, 2019
Added
Jun 27, 2019
Modified
Nov 27, 2024

Description

A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions before 2.1 are vulnerable.

Solution(s)

huawei-euleros-2_0_sp8-upgrade-libipa_hbachuawei-euleros-2_0_sp8-upgrade-libsss_autofshuawei-euleros-2_0_sp8-upgrade-libsss_certmaphuawei-euleros-2_0_sp8-upgrade-libsss_idmaphuawei-euleros-2_0_sp8-upgrade-libsss_nss_idmaphuawei-euleros-2_0_sp8-upgrade-libsss_simpleifphuawei-euleros-2_0_sp8-upgrade-libsss_sudohuawei-euleros-2_0_sp8-upgrade-python3-libipa_hbachuawei-euleros-2_0_sp8-upgrade-python3-libsss_nss_idmaphuawei-euleros-2_0_sp8-upgrade-python3-ssshuawei-euleros-2_0_sp8-upgrade-python3-sss-murmurhuawei-euleros-2_0_sp8-upgrade-python3-sssdconfighuawei-euleros-2_0_sp8-upgrade-sssdhuawei-euleros-2_0_sp8-upgrade-sssd-adhuawei-euleros-2_0_sp8-upgrade-sssd-clienthuawei-euleros-2_0_sp8-upgrade-sssd-commonhuawei-euleros-2_0_sp8-upgrade-sssd-common-pachuawei-euleros-2_0_sp8-upgrade-sssd-dbushuawei-euleros-2_0_sp8-upgrade-sssd-ipahuawei-euleros-2_0_sp8-upgrade-sssd-kcmhuawei-euleros-2_0_sp8-upgrade-sssd-krb5huawei-euleros-2_0_sp8-upgrade-sssd-krb5-commonhuawei-euleros-2_0_sp8-upgrade-sssd-ldaphuawei-euleros-2_0_sp8-upgrade-sssd-libwbclienthuawei-euleros-2_0_sp8-upgrade-sssd-nfs-idmaphuawei-euleros-2_0_sp8-upgrade-sssd-proxyhuawei-euleros-2_0_sp8-upgrade-sssd-toolshuawei-euleros-2_0_sp8-upgrade-sssd-winbind-idmap

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today