ALSA-2021:3151

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/8/ALSA-2021-3151.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2021:3151.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2021:3151

Related

CVE-2021-3621

Published

2021-08-16T08:00:18Z

Modified

2021-08-17T07:24:43Z

Summary

Important: sssd security update

Details

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.

Security Fix(es):

sssd: shell command injection in sssctl (CVE-2021-3621)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

https://vulners.com/cve/CVE-2021-3621

Affected packages

AlmaLinux:8 / libsss_nss_idmap-devel

Package

Name: libsss_nss_idmap-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.0-9.el8_4.2