OPENSUSE-SU-2021:2941-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2021-3621

Published: 03 Sept 2021, 07:23

Last modified:04 Feb 2026, 04:10

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

03 Sept 2021, 07:23

Published

Vulnerability first disclosed

04 Feb 2026, 04:10

Last Modified

Vulnerability information updated

Description

Security update for sssd This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands (bsc#1189492). - Add LDAPS support for the AD provider (bsc#1183735). - Improve logs to record the reason why internal watchdog terminates a process (bsc#1187120). - Fix watchdog not terminating tasks (bsc#1187120).

Affected Systems

opensuse•sssd&distro=openSUSE Leap 15.3
< 1.16.1-23.11.1

References (5)

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/32JUFL2YE6SH6B4KF762VVSDUIQI7ZKU/
https://bugzilla.suse.com/1183735
https://bugzilla.suse.com/1187120
https://bugzilla.suse.com/1189492
https://www.suse.com/security/cve/CVE-2021-3621