vulnerability
Oracle Linux: CVE-2019-3811: ELSA-2019-2177: sssd security, bug fix, and enhancement update (MODERATE)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:A/AC:L/Au:S/C:N/I:N/A:P) | Dec 4, 2018 | Jul 21, 2020 | Dec 3, 2025 |
Severity
3
CVSS
(AV:A/AC:L/Au:S/C:N/I:N/A:P)
Published
Dec 4, 2018
Added
Jul 21, 2020
Modified
Dec 3, 2025
Description
A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions before 2.1 are vulnerable.
A vulnerability was found in sssd where, if a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot().
A vulnerability was found in sssd where, if a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot().
Solutions
oracle-linux-upgrade-libipa-hbacoracle-linux-upgrade-libipa-hbac-develoracle-linux-upgrade-libsss-autofsoracle-linux-upgrade-libsss-certmaporacle-linux-upgrade-libsss-certmap-develoracle-linux-upgrade-libsss-idmaporacle-linux-upgrade-libsss-idmap-develoracle-linux-upgrade-libsss-nss-idmaporacle-linux-upgrade-libsss-nss-idmap-develoracle-linux-upgrade-libsss-simpleifporacle-linux-upgrade-libsss-simpleifp-develoracle-linux-upgrade-libsss-sudooracle-linux-upgrade-python-libipa-hbacoracle-linux-upgrade-python-libsss-nss-idmaporacle-linux-upgrade-python-sssoracle-linux-upgrade-python-sssdconfigoracle-linux-upgrade-python-sss-murmuroracle-linux-upgrade-sssdoracle-linux-upgrade-sssd-adoracle-linux-upgrade-sssd-clientoracle-linux-upgrade-sssd-commonoracle-linux-upgrade-sssd-common-pacoracle-linux-upgrade-sssd-dbusoracle-linux-upgrade-sssd-ipaoracle-linux-upgrade-sssd-kcmoracle-linux-upgrade-sssd-krb5oracle-linux-upgrade-sssd-krb5-commonoracle-linux-upgrade-sssd-ldaporacle-linux-upgrade-sssd-libwbclientoracle-linux-upgrade-sssd-libwbclient-develoracle-linux-upgrade-sssd-polkit-rulesoracle-linux-upgrade-sssd-proxyoracle-linux-upgrade-sssd-toolsoracle-linux-upgrade-sssd-winbind-idmap
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.