CVE-2023-3758

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-3758
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-3758.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-3758
Related
Published
2024-04-18T19:15:08Z
Modified
2025-06-19T10:44:55.995934Z
Downstream
Summary
[none]
Details

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.

References

Affected packages

Debian:11 / sssd

Package

Name
sssd
Purl
pkg:deb/debian/sssd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.1-2+deb11u1

Affected versions

2.*

2.4.1-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12 / sssd

Package

Name
sssd
Purl
pkg:deb/debian/sssd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.8.2-4+deb12u1

Affected versions

2.*

2.8.2-4

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / sssd

Package

Name
sssd
Purl
pkg:deb/debian/sssd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.5-1

Affected versions

2.*

2.8.2-4
2.9.1-1
2.9.1-2
2.9.2-1
2.9.4-1
2.9.4-1.1~exp1
2.9.4-1.1
2.9.4-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Git / github.com/sssd/sssd

Affected ranges

Type
GIT
Repo
https://github.com/sssd/sssd
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
595c4c6d2bcee3f88818813585eccda80546e0ab

Affected versions

2.*

2.4.1
2.4.2
2.5.0
2.5.1
2.5.2
2.6.0
2.6.1
2.6.2
2.6.3
2.7.0
2.8.0
2.9.0
2.9.1
2.9.2
2.9.3
2.9.4

Other

sssd-0_2_0
sssd-0_2_1
sssd-0_3_1
sssd-0_3_2
sssd-0_3_3
sssd-0_4_0
sssd-0_4_1
sssd-0_5_0
sssd-0_6_0
sssd-0_7_0
sssd-0_99_0
sssd-1_0_99
sssd-1_10_0
sssd-1_10_90
sssd-1_10_92
sssd-1_10_alpha1
sssd-1_10_beta1
sssd-1_10_beta2
sssd-1_11_0
sssd-1_11_0_beta1
sssd-1_11_0_beta2
sssd-1_11_90
sssd-1_11_91
sssd-1_12_0
sssd-1_12_0_beta1
sssd-1_12_0_beta2
sssd-1_12_1
sssd-1_12_2
sssd-1_12_3
sssd-1_12_90
sssd-1_13_0
sssd-1_13_0_alpha
sssd-1_13_1
sssd-1_13_90
sssd-1_13_91
sssd-1_14_0
sssd-1_14_0_alpha1
sssd-1_14_0_beta1
sssd-1_14_1
sssd-1_14_2
sssd-1_15_0
sssd-1_15_1
sssd-1_15_2
sssd-1_15_3
sssd-1_16_0
sssd-1_16_1
sssd-1_16_2
sssd-1_16_3
sssd-1_2_91
sssd-1_3_0
sssd-1_4_0
sssd-1_5_0
sssd-1_5_1
sssd-1_6_0
sssd-1_8_91
sssd-1_8_92
sssd-1_8_93
sssd-1_8_94
sssd-1_8_95
sssd-1_8_96
sssd-1_8_97
sssd-1_8_98
sssd-1_9_0
sssd-1_9_0_beta1
sssd-1_9_0_beta2
sssd-1_9_0_beta3
sssd-1_9_0_beta4
sssd-1_9_0_beta5
sssd-1_9_0_beta6
sssd-1_9_0_beta7
sssd-1_9_0_rc1
sssd-1_9_1
sssd-1_9_2
sssd-1_9_91
sssd-1_9_92
sssd-1_9_93
sssd-1_9_94
sssd-2_1_0
sssd-2_2_0
sssd-2_2_1
sssd-2_2_2
sssd-2_2_3
sssd-2_3_0
sssd-2_3_1
sssd-2_4_0