Rapid7 Vulnerability & Exploit Database

RHSA-2013:0508: sssd security, bug fix and enhancement update

Back to Search

RHSA-2013:0508: sssd security, bug fix and enhancement update

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
02/21/2013
Created
07/25/2018
Added
02/21/2013
Modified
07/04/2017

Description

The System Security Services Daemon (SSSD) provides a set of daemons tomanage access to remote directories and authentication mechanisms. Itprovides an NSS and PAM interface toward the system and a pluggableback-end system to connect to multiple different account sources. It isalso the basis to provide client auditing and policy services for projectssuch as FreeIPA.A race condition was found in the way SSSD copied and removed user homedirectories. A local attacker who is able to write into the home directoryof a different user who is being removed could use this flaw to performsymbolic link attacks, possibly allowing them to modify and deletearbitrary files with the privileges of the root user. (CVE-2013-0219)Multiple out-of-bounds memory read flaws were found in the way the autofsand SSH service responders parsed certain SSSD packets. An attacker couldspend a specially-crafted packet that, when processed by the autofs or SSHservice responders, would cause SSSD to crash. This issue only caused atemporary denial of service, as SSSD was automatically restarted by themonitor process after the crash. (CVE-2013-0220)The CVE-2013-0219 and CVE-2013-0220 issues were discovered by FlorianWeimer of the Red Hat Product Security Team.These updated sssd packages also include numerous bug fixes andenhancements. Space precludes documenting all of these changes in thisadvisory. Users are directed to the Red Hat Enterprise Linux 6.4 TechnicalNotes, linked to in the References, for information on the most significantof these changes.All SSSD users are advised to upgrade to these updated packages, whichupgrade SSSD to upstream version 1.9 to correct these issues, fix thesebugs and add these enhancements.

Solution(s)

  • redhat-upgrade-libipa_hbac
  • redhat-upgrade-libipa_hbac-devel
  • redhat-upgrade-libipa_hbac-python
  • redhat-upgrade-libsss_autofs
  • redhat-upgrade-libsss_idmap
  • redhat-upgrade-libsss_idmap-devel
  • redhat-upgrade-libsss_sudo
  • redhat-upgrade-libsss_sudo-devel
  • redhat-upgrade-sssd
  • redhat-upgrade-sssd-client
  • redhat-upgrade-sssd-debuginfo
  • redhat-upgrade-sssd-tools

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;