Ubuntu 26.04 LTS sssd Important Denial of Service Vuln 2026-6245
ubuntu
June 1, 2026
SSSD could be made to crash if it received specially crafted input.
Summary
SSSD could be made to crash if it received specially crafted input.
Software Description:
- sssd: System Security Services Daemon
Details:
It was discovered that SSSD did not properly handle raw bytes in the PAM
passkey responder. A local attacker could possibly use this issue to cause
the SSSD PAM responder to crash, resulting in a denial of service.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS sssd 2.12.0-1ubuntu5.1 Ubuntu 25.10 sssd 2.10.1-2ubuntu5.2 Ubuntu 24.04 LTS sssd 2.9.4-1.1ubuntu6.5 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-8355-1
CVE-2026-6245
PREVIOUS 
NEXT Severity
important
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8355-1
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!