Security Advisory

CVE-2015-5292

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-10-29 16:00:00

Last updated 2024-08-06 06:41:09

Assigner redhat

State PUBLISHED

Description

Memory leak in the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause a denial of service (memory consumption) via a large number of logins that trigger parsing of PAC blobs during Kerberos authentication.

← Browse all CVEs View on cve.org ↗