Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Ubuntu 24.04 LTS: USN-6836-1 Moderate: SSSD Authorization Problem

Calendar Jun 17, 2024 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory software update Ubuntu moderate severity resource access sssd GPO policy
SSSD did not always correctly apply the GPO policy. 
==========================================================================
Ubuntu Security Notice USN-6836-1
June 17, 2024

sssd vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS
- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

SSSD did not always correctly apply the GPO policy.

Software Description:
- sssd: System Security Services Daemon

Details:

It was discovered that SSSD did not always correctly apply the GPO policy
for authenticated users, contrary to expectations. This could result in
improper authorization or improper access to resources.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
   sssd                            2.9.4-1.1ubuntu6.1

Ubuntu 23.10
   sssd                            2.9.1-2ubuntu2.1

Ubuntu 22.04 LTS
   sssd                            2.6.3-1ubuntu3.3

Ubuntu 20.04 LTS
   sssd                            2.2.3-3ubuntu0.13

In general, a standard system update will make all the necessary changes.

References:
   https://ubuntu.com/security/notices/USN-6836-1
   CVE-2023-3758

Package Information:
   https://launchpad.net/ubuntu/+source/sssd/2.9.4-1.1ubuntu6.1
   https://launchpad.net/ubuntu/+source/sssd/2.9.1-2ubuntu2.1
   https://launchpad.net/ubuntu/+source/sssd/2.6.3-1ubuntu3.3
   https://launchpad.net/ubuntu/+source/sssd/2.2.3-3ubuntu0.13

Ubuntu 24.04 LTS: USN-6836-1 Moderate: SSSD Authorization Problem

ubuntu
Calendar Grey June 17, 2024
Dist Ubuntu Esm H88
The Ubuntu Security Notice USN-6836-1 concerns problems in sssd policy implementation that impact several long-term support releases.
SSSD did not always correctly apply the GPO policy.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: SSSD did not always correctly apply the GPO policy. Software Description: - sssd: System Security Services Daemon Details: It was discovered that SSSD did not always correctly apply the GPO policy for authenticated users, contrary to expectations. This could result in improper authorization or improper access to resources.

Topics%20covered

Topics Covered

security advisory software update Ubuntu moderate severity resource access sssd GPO policy

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS sssd 2.9.4-1.1ubuntu6.1 Ubuntu 23.10 sssd 2.9.1-2ubuntu2.1 Ubuntu 22.04 LTS sssd 2.6.3-1ubuntu3.3 Ubuntu 20.04 LTS sssd 2.2.3-3ubuntu0.13 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6836-1

CVE-2023-3758

Ubuntu Security Notice USN-6836-1

Topics%20covered

Topics Covered

security advisory software update Ubuntu moderate severity resource access sssd GPO policy

Package Information

https://launchpad.net/ubuntu/+source/sssd/2.9.4-1.1ubuntu6.1 https://launchpad.net/ubuntu/+source/sssd/2.9.1-2ubuntu2.1 https://launchpad.net/ubuntu/+source/sssd/2.6.3-1ubuntu3.3 https://launchpad.net/ubuntu/+source/sssd/2.2.3-3ubuntu0.13

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here