{"id":"RLSA-2024:2571","summary":"Moderate: sssd security and bug fix update","details":"The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.\n\nSecurity Fix(es):\n\n* sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758)\n\nBug Fix(es):\n\n* socket leak (JIRA:Rocky Linux-22340)\n\n* Passkey cannot fall back to password (JIRA:Rocky Linux-28161)\n\n* sssd: Race condition during authorization leads to GPO policies functioning inconsistently (JIRA:Rocky Linux-27209)","modified":"2026-02-04T23:30:03.255357Z","published":"2024-05-10T14:32:36.204878Z","upstream":["CVE-2023-3758"],"references":[{"type":"ADVISORY","url":"https://errata.rockylinux.org/RLSA-2024:2571"}],"affected":[{"package":{"name":"sssd","ecosystem":"Rocky Linux:9","purl":"pkg:rpm/rocky-linux/sssd?distro=rocky-linux-9&epoch=0"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.4-6.el9_4"}],"database_specific":{"yum_repository":"BaseOS"}}],"database_specific":{"source":"https://storage.googleapis.com/resf-osv-data/RLSA-2024:2571.json"}}],"schema_version":"1.7.3","credits":[{"name":"Rocky Enterprise Software Foundation"},{"name":"Red Hat"}]}