VulnerableCode Package Details - pkg:deb/debian/sssd@1.16.3-3.2

Search for packages

Vulnerability	Summary	Fixed by
VCID-5hxw-dnz2-v7by Aliases: CVE-2019-3811	sssd: fallback_homedir returns '/' for empty home directories in passwd file	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-r1m1-kp4g-pbc7 Aliases: CVE-2021-3621	A vulnerability has been discovered in SSSD, which can lead to arbitrary code execution.	2.8.2-4+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-t4w3-vj56-4fcq Aliases: CVE-2023-3758	sssd: Race condition during authorization leads to GPO policies functioning inconsistently	2.8.2-4+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-t5gr-yesx-hqah Aliases: CVE-2022-4254	sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yn22-35eg-1khb Aliases: CVE-2018-16838	sssd: improper implementation of GPOs due to too restrictive permissions	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zee4-1xpd-27bc Aliases: CVE-2018-16883	sssd: Information leak in infopipe due to an improper uid restriction	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-5hxw-dnz2-v7by
Aliases:
CVE-2019-3811

sssd: fallback_homedir returns '/' for empty home directories in passwd file

2.4.1-2
Affected by 3 other vulnerabilities.

VCID-r1m1-kp4g-pbc7
Aliases:
CVE-2021-3621

A vulnerability has been discovered in SSSD, which can lead to arbitrary code execution.

2.8.2-4+deb12u1
Affected by 1 other vulnerability.

VCID-t4w3-vj56-4fcq
Aliases:
CVE-2023-3758

sssd: Race condition during authorization leads to GPO policies functioning inconsistently

2.8.2-4+deb12u1
Affected by 1 other vulnerability.

VCID-t5gr-yesx-hqah
Aliases:
CVE-2022-4254

sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters

2.4.1-2
Affected by 3 other vulnerabilities.

VCID-yn22-35eg-1khb
Aliases:
CVE-2018-16838

sssd: improper implementation of GPOs due to too restrictive permissions

2.4.1-2
Affected by 3 other vulnerabilities.

VCID-zee4-1xpd-27bc
Aliases:
CVE-2018-16883

sssd: Information leak in infopipe due to an improper uid restriction

2.4.1-2
Affected by 3 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-bveu-ff3p-gfh7	sssd: information leak from the sssd-sudo responder	CVE-2018-10852
VCID-jhrd-1f8g-6ueh	sssd: unsanitized input when searching in local cache database	CVE-2017-12173

Vulnerability

Summary

Aliases

VCID-bveu-ff3p-gfh7

sssd: information leak from the sssd-sudo responder

CVE-2018-10852

VCID-jhrd-1f8g-6ueh

sssd: unsanitized input when searching in local cache database

CVE-2017-12173

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:38:23.110336+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:33:38.427641+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:57:39.561056+00:00	Debian Oval Importer	Fixing	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:38:10.475040+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:21:41.434448+00:00	Debian Oval Importer	Fixing	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:12:21.874303+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:20:19.034780+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:31:45.655361+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:11:20.511740+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:06:51.677575+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:34:00.966883+00:00	Debian Oval Importer	Fixing	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:17:05.243512+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:06:52.291778+00:00	Debian Oval Importer	Fixing	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:57:48.700527+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:06:46.974362+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:19:45.732558+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:42:24.638422+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:38:03.332563+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:09:28.373391+00:00	Debian Oval Importer	Fixing	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:55:54.907990+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:53:19.885414+00:00	Debian Oval Importer	Fixing	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:44:34.637420+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:55:59.082731+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:14:28.567330+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0