CVE-2025-11561

EUVD-2025-33347
A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an attacker with permission to modify certain AD attributes (such as userPrincipalName or samAccountName) to impersonate privileged users, potentially resulting in unauthorized access or privilege escalation on domain-joined Linux hosts.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
sssd
bionic
ignored
focal
ignored
jammy
ignored
noble
ignored
plucky
ignored
questing
ignored
xenial
ignored
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libipa_hbac-devel
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libipa_hbac0
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_certmap-devel
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_certmap0
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_idmap-devel
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_idmap0
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_nss_idmap-devel
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_nss_idmap0
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_simpleifp-devel
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_simpleifp0
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
libsss_sudo
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
python-sssd-config
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
python3-sssd-config
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-32bit
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-ad
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-common
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
sssd-common-32bit
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
sssd-dbus
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-ipa
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-kcm
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-krb5
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-krb5-common
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-ldap
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-proxy
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-tools
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 12 SP3
1.13.4-34.49.1
fixed
suse enterprise server 12 SP5
1.16.1-7.68.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
sssd-winbind-idmap
suse enterprise desktop 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise desktop 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise sap 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise sap 15 SP7
2.9.3-150700.9.9.1
fixed
suse enterprise server 15 SP2
1.16.1-150200.17.35.1
fixed
suse enterprise server 15 SP3
1.16.1-150300.23.56.1
fixed
suse enterprise server 15 SP4
2.5.2-150400.4.40.1
fixed
suse enterprise server 15 SP5
2.5.2-150500.10.39.1
fixed
suse enterprise server 15 SP6
2.9.3-150600.3.28.1
fixed
suse enterprise server 15 SP7
2.9.3-150700.9.9.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
libipa
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
libsss
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
python3-libipa
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
python3-libsss
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
python3-sss
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
python3-sss-murmur
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
python3-sssdconfig
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-ad
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-client
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-common
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-common-pac
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-dbus
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-idp
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-ipa
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-kcm
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-krb5
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-krb5-common
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-ldap
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-libwbclient
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
sssd-nfs-idmap
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-passkey
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-polkit-rules
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-proxy
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-tools
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
sssd-winbind-idmap
RHEL 8
0:2.9.4-5.el8_10.3
fixed
RHEL 8.2 AUS
0:2.2.3-20.el8_2.3
fixed
RHEL 8.4 AUS
0:2.4.0-9.el8_4.4
fixed
RHEL 8.6 AUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 E4S
0:2.6.2-4.el8_6.4
fixed
RHEL 8.6 TUS
0:2.6.2-4.el8_6.4
fixed
RHEL 8.8 E4S
0:2.8.2-4.el8_8.3
fixed
RHEL 8.8 TUS
0:2.8.2-4.el8_8.3
fixed
RHEL 9
0:2.9.7-4.el9_7.1
fixed
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHSA-2025:19610
https://access.redhat.com/errata/RHSA-2025:19847
https://access.redhat.com/errata/RHSA-2025:19848
https://access.redhat.com/errata/RHSA-2025:19849
https://access.redhat.com/errata/RHSA-2025:19850
https://access.redhat.com/errata/RHSA-2025:19851
https://access.redhat.com/errata/RHSA-2025:19852
https://access.redhat.com/errata/RHSA-2025:19853
https://access.redhat.com/errata/RHSA-2025:19854
https://access.redhat.com/errata/RHSA-2025:19859
https://access.redhat.com/errata/RHSA-2025:20954
https://access.redhat.com/errata/RHSA-2025:21020
https://access.redhat.com/errata/RHSA-2025:21067
https://access.redhat.com/errata/RHSA-2025:21329
https://access.redhat.com/errata/RHSA-2025:21795
https://access.redhat.com/errata/RHSA-2025:22256
https://access.redhat.com/errata/RHSA-2025:22265
https://access.redhat.com/errata/RHSA-2025:22277
https://access.redhat.com/errata/RHSA-2025:22529
https://access.redhat.com/errata/RHSA-2025:22548
https://access.redhat.com/errata/RHSA-2025:22724
https://access.redhat.com/errata/RHSA-2025:23113
https://access.redhat.com/errata/RHSA-2026:0316
https://access.redhat.com/errata/RHSA-2026:0677
https://access.redhat.com/security/cve/CVE-2025-11561
https://blog.async.sg/kerberos-ldr
https://bugzilla.redhat.com/show_bug.cgi?id=2402727
https://github.com/SSSD/sssd/issues/8021