#VU40622 Memory leak in SSSD - CVE-2015-5292

Cybersecurity Help s.r.o.

Published: 2015-10-29 | Updated: 2023-05-09

Vulnerability identifier: #VU40622

Vulnerability risk: Low

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2015-5292

CWE-ID: CWE-401

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SSSD
Web applications / Remote management & hosting panels

Vendor: SSSD

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause a denial of service (memory consumption) via a large number of logins that trigger parsing of PAC blobs during Kerberos authentication. A remote attacker can perform a denial of service attack.

Mitigation
Install update from vendor's website.

Vulnerable software versions

SSSD: 1.10.0 - 1.13.0

External links
https://lists.fedoraproject.org/pipermail/package-announce/2015-October/169110.html
https://lists.fedoraproject.org/pipermail/package-announce/2015-October/169597.html
https://lists.fedoraproject.org/pipermail/package-announce/2015-October/169613.html
https://permalink.gmane.org/gmane.linux.redhat.sssd.user/3422
https://rhn.redhat.com/errata/RHSA-2015-2019.html
https://rhn.redhat.com/errata/RHSA-2015-2355.html
https://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
https://www.securityfocus.com/bid/77529
https://www.securitytracker.com/id/1034038
https://bugzilla.redhat.com/show_bug.cgi?id=1267580
https://fedorahosted.org/sssd/attachment/ticket/2803/0001-Fix-memory-leak-in-sssdpac_verify.patch
https://fedorahosted.org/sssd/ticket/2803
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Amazon Linux AMI update for sssd

Memory leak in Pagure SSSD

Fedora 21 update for sssd

Fedora 22 update for sssd

Fedora 23 update for sssd