Security update for sssd SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:20131-1 Final 1 1 2025-02-28T13:04:53Z current 2025-02-28T13:04:53Z 2025-02-28T13:04:53Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for sssd This update for sssd fixes the following issues: - CVE-2023-3758: Fixed race condition during authorization leading to GPO policies functioning inconsistently (bsc#1223100). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-Micro-6.0-220 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202520131-1/ Link for SUSE-SU-2025:20131-1 https://lists.suse.com/pipermail/sle-security-updates/2025-June/021200.html E-Mail link for SUSE-SU-2025:20131-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1223100 SUSE Bug 1223100 https://www.suse.com/security/cve/CVE-2023-3758/ SUSE CVE CVE-2023-3758 page SUSE Linux Micro 6.0 libsss_certmap0-2.8.2-6.1 libsss_idmap0-2.8.2-6.1 libsss_nss_idmap0-2.8.2-6.1 sssd-2.8.2-6.1 sssd-ad-2.8.2-6.1 sssd-krb5-2.8.2-6.1 sssd-krb5-common-2.8.2-6.1 sssd-ldap-2.8.2-6.1 libsss_certmap0-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 libsss_idmap0-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 libsss_nss_idmap0-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 sssd-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 sssd-ad-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 sssd-krb5-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 sssd-krb5-common-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 sssd-ldap-2.8.2-6.1 as a component of SUSE Linux Micro 6.0 A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately. CVE-2023-3758 SUSE Linux Micro 6.0:libsss_certmap0-2.8.2-6.1 SUSE Linux Micro 6.0:libsss_idmap0-2.8.2-6.1 SUSE Linux Micro 6.0:libsss_nss_idmap0-2.8.2-6.1 SUSE Linux Micro 6.0:sssd-2.8.2-6.1 SUSE Linux Micro 6.0:sssd-ad-2.8.2-6.1 SUSE Linux Micro 6.0:sssd-krb5-2.8.2-6.1 SUSE Linux Micro 6.0:sssd-krb5-common-2.8.2-6.1 SUSE Linux Micro 6.0:sssd-ldap-2.8.2-6.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202520131-1/ https://www.suse.com/security/cve/CVE-2023-3758.html CVE-2023-3758 https://bugzilla.suse.com/1223100 SUSE Bug 1223100