A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.
Debian Bug report logs -
#1070369
sssd: CVE-2023-3758
Package:
src:sssd;
Maintainer for src:sssd is Debian SSSD Team <pkg-sssd-devel@alioth-listsdebiannet>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 4 May 2024 15:09:01 UTC
Severity: grave
Tags: security, upstream
Found in version sssd/294 ...