VulnerableCode Package Details - pkg:deb/debian/sssd@1.2.1-4%2Bsqueeze1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/sssd@1.2.1-4%2Bsqueeze1

Essentials
History (42)

purl	pkg:deb/debian/sssd@1.2.1-4%2Bsqueeze1

Next non-vulnerable version	2.12.0-4
Latest non-vulnerable version	2.12.0-4
Risk	4.0

Vulnerabilities affecting this package (14)

Vulnerability	Summary	Fixed by
VCID-3sh2-437b-ayfj Aliases: CVE-2013-0220	sssd: Out-of-bounds read flaws in autofs and ssh services responders	1.8.4-2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5hxw-dnz2-v7by Aliases: CVE-2019-3811	sssd: fallback_homedir returns '/' for empty home directories in passwd file	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-bveu-ff3p-gfh7 Aliases: CVE-2018-10852	sssd: information leak from the sssd-sudo responder	1.16.3-3.2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-d4ke-65rx-13ac Aliases: CVE-2014-0249	sssd: incorrect expansion of group membership when encountering a non-POSIX group	1.11.7-3 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f5pv-qsd2-gkda Aliases: CVE-2010-4341	sssd: DoS in sssd PAM responder can prevent logins	1.8.4-2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-jhrd-1f8g-6ueh Aliases: CVE-2017-12173	sssd: unsanitized input when searching in local cache database	1.16.3-3.2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-kb5t-88br-5yh8 Aliases: CVE-2013-0219	sssd: TOCTOU race conditions by copying and removing directory trees	1.8.4-2 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-r1m1-kp4g-pbc7 Aliases: CVE-2021-3621	A vulnerability has been discovered in SSSD, which can lead to arbitrary code execution.	2.8.2-4+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-t4w3-vj56-4fcq Aliases: CVE-2023-3758	sssd: Race condition during authorization leads to GPO policies functioning inconsistently	2.8.2-4+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-t5gr-yesx-hqah Aliases: CVE-2022-4254	sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-xpwr-fzex-m7fa Aliases: CVE-2012-3462	A flaw was found in SSSD version 1.9.0. The SSSD's access-provider logic causes the result of the HBAC rule processing to be ignored in the event that the access-provider is also handling the setup of the user's SELinux user context.	1.11.7-3 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yn22-35eg-1khb Aliases: CVE-2018-16838	sssd: improper implementation of GPOs due to too restrictive permissions	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zee4-1xpd-27bc Aliases: CVE-2018-16883	sssd: Information leak in infopipe due to an improper uid restriction	2.4.1-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zz4w-9935-q3gc Aliases: CVE-2015-5292	sssd: memory leak in the sssd_pac_plugin	1.15.0-3+deb9u1 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:38:23.092505+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:33:38.410433+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:57:39.540343+00:00	Debian Oval Importer	Affected by	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:33:07.298359+00:00	Debian Oval Importer	Affected by	VCID-3sh2-437b-ayfj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:38:10.457393+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:21:30.557323+00:00	Debian Oval Importer	Affected by	VCID-xpwr-fzex-m7fa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:08:35.567778+00:00	Debian Oval Importer	Affected by	VCID-kb5t-88br-5yh8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:09:02.207396+00:00	Debian Oval Importer	Affected by	VCID-f5pv-qsd2-gkda	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:21:41.416094+00:00	Debian Oval Importer	Affected by	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:12:21.857594+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:08:52.252644+00:00	Debian Oval Importer	Affected by	VCID-zz4w-9935-q3gc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:20:19.016688+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:08:59.978568+00:00	Debian Oval Importer	Affected by	VCID-d4ke-65rx-13ac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:31:45.638663+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:11:20.501368+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:06:51.646299+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:34:00.948308+00:00	Debian Oval Importer	Affected by	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:10:04.194296+00:00	Debian Oval Importer	Affected by	VCID-3sh2-437b-ayfj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:17:05.222853+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:01:03.328028+00:00	Debian Oval Importer	Affected by	VCID-xpwr-fzex-m7fa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:48:33.582778+00:00	Debian Oval Importer	Affected by	VCID-kb5t-88br-5yh8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:52:45.637637+00:00	Debian Oval Importer	Affected by	VCID-f5pv-qsd2-gkda	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:06:52.271928+00:00	Debian Oval Importer	Affected by	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:57:48.679148+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:54:25.777347+00:00	Debian Oval Importer	Affected by	VCID-zz4w-9935-q3gc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:06:46.955361+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:55:33.772536+00:00	Debian Oval Importer	Affected by	VCID-d4ke-65rx-13ac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:19:45.712289+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:42:24.617130+00:00	Debian Oval Importer	Affected by	VCID-t4w3-vj56-4fcq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:38:03.309097+00:00	Debian Oval Importer	Affected by	VCID-t5gr-yesx-hqah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:09:28.354087+00:00	Debian Oval Importer	Affected by	VCID-bveu-ff3p-gfh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:46:35.846864+00:00	Debian Oval Importer	Affected by	VCID-3sh2-437b-ayfj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:55:54.883982+00:00	Debian Oval Importer	Affected by	VCID-r1m1-kp4g-pbc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:40:17.419989+00:00	Debian Oval Importer	Affected by	VCID-xpwr-fzex-m7fa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:28:15.307615+00:00	Debian Oval Importer	Affected by	VCID-kb5t-88br-5yh8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:37:32.009389+00:00	Debian Oval Importer	Affected by	VCID-f5pv-qsd2-gkda	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:53:19.863331+00:00	Debian Oval Importer	Affected by	VCID-jhrd-1f8g-6ueh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:44:34.613801+00:00	Debian Oval Importer	Affected by	VCID-yn22-35eg-1khb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:41:17.468466+00:00	Debian Oval Importer	Affected by	VCID-zz4w-9935-q3gc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:55:59.061205+00:00	Debian Oval Importer	Affected by	VCID-zee4-1xpd-27bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:45:18.547518+00:00	Debian Oval Importer	Affected by	VCID-d4ke-65rx-13ac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:14:28.537528+00:00	Debian Oval Importer	Affected by	VCID-5hxw-dnz2-v7by	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0