VulnerableCode Package Details - pkg:deb/debian/sssd@1.15.0-3%2Bdeb9u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/sssd@1.15.0-3%2Bdeb9u1

Essentials
History (27)

purl	pkg:deb/debian/sssd@1.15.0-3%2Bdeb9u1

Next non-vulnerable version	2.12.0-4
Latest non-vulnerable version	2.12.0-4
Risk	4.0

Vulnerabilities affecting this package (8)

Vulnerability	Summary	Fixed by
VCID-5hxw-dnz2-v7by Aliases: CVE-2019-3811	sssd: fallback_homedir returns '/' for empty home directories in passwd file	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-bveu-ff3p-gfh7 Aliases: CVE-2018-10852	sssd: information leak from the sssd-sudo responder	1.16.3-3.2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-jhrd-1f8g-6ueh Aliases: CVE-2017-12173	sssd: unsanitized input when searching in local cache database	1.16.3-3.2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-r1m1-kp4g-pbc7 Aliases: CVE-2021-3621	A vulnerability has been discovered in SSSD, which can lead to arbitrary code execution.	2.8.2-4+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-t4w3-vj56-4fcq Aliases: CVE-2023-3758	sssd: Race condition during authorization leads to GPO policies functioning inconsistently	2.8.2-4+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-t5gr-yesx-hqah Aliases: CVE-2022-4254	sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yn22-35eg-1khb Aliases: CVE-2018-16838	sssd: improper implementation of GPOs due to too restrictive permissions	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zee4-1xpd-27bc Aliases: CVE-2018-16883	sssd: Information leak in infopipe due to an improper uid restriction	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-zz4w-9935-q3gc	sssd: memory leak in the sssd_pac_plugin	CVE-2015-5292

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:38:23.106727+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:33:38.424250+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:57:39.556963+00:00	Debian Oval Importer	Affected by	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:38:10.471634+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:21:41.430795+00:00	Debian Oval Importer	Affected by	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:12:21.871019+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:08:52.267770+00:00	Debian Oval Importer	Fixing	VCID-zz4w-9935-q3gc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:20:19.031096+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:31:45.651826+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:11:20.509662+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:06:51.674009+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:34:00.963287+00:00	Debian Oval Importer	Affected by	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:17:05.239500+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:06:52.287857+00:00	Debian Oval Importer	Affected by	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:57:48.696362+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:54:25.793838+00:00	Debian Oval Importer	Fixing	VCID-zz4w-9935-q3gc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:06:46.970605+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:19:45.728525+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:42:24.633800+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:38:03.328219+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:09:28.369759+00:00	Debian Oval Importer	Affected by	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:55:54.903451+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:53:19.880903+00:00	Debian Oval Importer	Affected by	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:44:34.632771+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:41:17.487767+00:00	Debian Oval Importer	Fixing	VCID-zz4w-9935-q3gc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:55:59.078502+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:14:28.561735+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0