A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that restrict the user's filesystem access to within their home directory through chroot() etc. All versions prior to 2.1 are vulnerable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject sssd |
||
debian debian linux 8.0 |
||
fedoraproject fedora - |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
redhat enterprise linux 7.0 |