Main Vulnerability Database SB2023012740

SB2023012740 - SUSE update for sssd

Published: January 27, 2023

Security Bulletin ID SB2023012740

CSH Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) LDAP injection (CVE-ID: CVE-2022-4254)

CWE-ID: CWE-90 - Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to improper input validation in libsss_certmap functionality when validating data used in DLAP queries. A remote non-authenticated attacker can use a specially crafted certificate to bypass authentication process and gain control of the admin account, leading to full domain takeover.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2023/suse-su-20230204-1/

Vulnerable Software

SUSE Manager Proxy: 4.2
SUSE Manager Retail Branch Server: 4.2
SUSE Manager Server: 4.2
SUSE Linux Enterprise Micro: 5.1 - 5.2
openSUSE Leap Micro: 5.2
SUSE Enterprise Storage: 7.1
SUSE Linux Enterprise Realtime Extension: 15-SP3
SUSE Linux Enterprise Server for SAP: 15-SP3
SUSE Linux Enterprise High Performance Computing: 15-SP3-ESPOS - 15-SP3-LTSS
SUSE Linux Enterprise Server: 15-SP3-LTSS
sssd-krb5: before 1.16.1-150300.23.37.1
libsss_simpleifp0: before 1.16.1-150300.23.37.1
libsss_simpleifp0-debuginfo: before 1.16.1-150300.23.37.1
python3-sssd-config: before 1.16.1-150300.23.37.1
python3-sssd-config-debuginfo: before 1.16.1-150300.23.37.1
sssd-ad: before 1.16.1-150300.23.37.1
sssd-ad-debuginfo: before 1.16.1-150300.23.37.1
sssd-dbus: before 1.16.1-150300.23.37.1
sssd-dbus-debuginfo: before 1.16.1-150300.23.37.1
sssd-ipa: before 1.16.1-150300.23.37.1
sssd-ipa-debuginfo: before 1.16.1-150300.23.37.1
libsss_simpleifp-devel: before 1.16.1-150300.23.37.1
sssd-krb5-debuginfo: before 1.16.1-150300.23.37.1
sssd-proxy: before 1.16.1-150300.23.37.1
sssd-proxy-debuginfo: before 1.16.1-150300.23.37.1
sssd-tools: before 1.16.1-150300.23.37.1
sssd-tools-debuginfo: before 1.16.1-150300.23.37.1
sssd-winbind-idmap: before 1.16.1-150300.23.37.1
sssd-winbind-idmap-debuginfo: before 1.16.1-150300.23.37.1
sssd-common-32bit: before 1.16.1-150300.23.37.1
sssd-common-32bit-debuginfo: before 1.16.1-150300.23.37.1
sssd-krb5-common: before 1.16.1-150300.23.37.1
libsss_certmap0-debuginfo: before 1.16.1-150300.23.37.1
libsss_idmap0: before 1.16.1-150300.23.37.1
libsss_idmap0-debuginfo: before 1.16.1-150300.23.37.1
libsss_nss_idmap0: before 1.16.1-150300.23.37.1
libsss_nss_idmap0-debuginfo: before 1.16.1-150300.23.37.1
sssd: before 1.16.1-150300.23.37.1
sssd-common: before 1.16.1-150300.23.37.1
sssd-common-debuginfo: before 1.16.1-150300.23.37.1
sssd-debugsource: before 1.16.1-150300.23.37.1
libsss_certmap0: before 1.16.1-150300.23.37.1
sssd-krb5-common-debuginfo: before 1.16.1-150300.23.37.1
sssd-ldap: before 1.16.1-150300.23.37.1
sssd-ldap-debuginfo: before 1.16.1-150300.23.37.1
libipa_hbac-devel: before 1.16.1-150300.23.37.1
libipa_hbac0: before 1.16.1-150300.23.37.1
libipa_hbac0-debuginfo: before 1.16.1-150300.23.37.1
libsss_certmap-devel: before 1.16.1-150300.23.37.1
libsss_idmap-devel: before 1.16.1-150300.23.37.1
libsss_nss_idmap-devel: before 1.16.1-150300.23.37.1

SB2023012740 - SUSE update for sssd

Breakdown by Severity

Description

Remediation

References

Please verify you're human