vulnerability

Oracle Linux: CVE-2023-3758: ELSA-2024-2571: sssd security and bug fix update (MODERATE) (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:A/AC:M/Au:S/C:C/I:C/A:C)	Apr 16, 2024	May 8, 2024	Dec 3, 2025

Severity

CVSS

(AV:A/AC:M/Au:S/C:C/I:C/A:C)

Published

Apr 16, 2024

Added

May 8, 2024

Modified

Dec 3, 2025

Description

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.

Solutions

oracle-linux-upgrade-libipa-hbacoracle-linux-upgrade-libsss-autofsoracle-linux-upgrade-libsss-certmaporacle-linux-upgrade-libsss-idmaporacle-linux-upgrade-libsss-nss-idmaporacle-linux-upgrade-libsss-nss-idmap-develoracle-linux-upgrade-libsss-simpleifporacle-linux-upgrade-libsss-sudooracle-linux-upgrade-python3-libipa-hbacoracle-linux-upgrade-python3-libsss-nss-idmaporacle-linux-upgrade-python3-sssoracle-linux-upgrade-python3-sssdconfigoracle-linux-upgrade-python3-sss-murmuroracle-linux-upgrade-sssdoracle-linux-upgrade-sssd-adoracle-linux-upgrade-sssd-clientoracle-linux-upgrade-sssd-commonoracle-linux-upgrade-sssd-common-pacoracle-linux-upgrade-sssd-dbusoracle-linux-upgrade-sssd-idporacle-linux-upgrade-sssd-ipaoracle-linux-upgrade-sssd-kcmoracle-linux-upgrade-sssd-krb5oracle-linux-upgrade-sssd-krb5-commonoracle-linux-upgrade-sssd-ldaporacle-linux-upgrade-sssd-nfs-idmaporacle-linux-upgrade-sssd-passkeyoracle-linux-upgrade-sssd-polkit-rulesoracle-linux-upgrade-sssd-proxyoracle-linux-upgrade-sssd-toolsoracle-linux-upgrade-sssd-winbind-idmap

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today