OPENSUSE-SU-2019:1589-1
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 19 Jun 2019, 12:19
Last modified:04 Feb 2026, 02:23
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
19 Jun 2019, 12:19
Published
Vulnerability first disclosed
04 Feb 2026, 02:23
Last Modified
Vulnerability information updated
Description
Security update for sssd This update for sssd fixes the following issues: Security issue fixed: - CVE-2018-16838: Fixed an authentication bypass related to the Group Policy Objects implementation (bsc#1124194). Non-security issues fixed: - Allow defaults sudoRole without sudoUser attribute (bsc#1135247) - Missing GPOs directory could have led to login problems (bsc#1132879) - Fix a crash by adding a netgroup counter to struct nss_enum_index (bsc#1132657) This update was imported from the SUSE:SLE-15:Update update project.
Affected Systems
- opensuse•sssd&distro=openSUSE Leap 15.0
< 1.16.1-lp151.7.3.1
- opensuse•sssd&distro=openSUSE Leap 15.1
< 1.16.1-lp151.7.3.1
References (6)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LTMPMQK3HWS2LUXEMT7VPOZ2KIKKAUAZ/#LTMPMQK3HWS2LUXEMT7VPOZ2KIKKAUAZ
- https://bugzilla.suse.com/1124194
- https://bugzilla.suse.com/1132657
- https://bugzilla.suse.com/1132879
- https://bugzilla.suse.com/1135247
- https://www.suse.com/security/cve/CVE-2018-16838