CVE-2017-12173: Input Validation
First published: Tue Oct 03 2017(Updated: )
It was found that sssd's sysdb_search_user_by_upn_res() function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for a given user, an authenticated attacker could use this flaw to retrieve it.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/sssd | <1.16.0 | 1.16.0 |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Desktop | =7.0 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Server | =7.0 | |
| Red Hat Enterprise Linux Server | =7.4 | |
| Red Hat Enterprise Linux Server | =7.4 | |
| Red Hat Enterprise Linux Server | =7.5 | |
| Red Hat Enterprise Linux Workstation | =6.0 | |
| Red Hat Enterprise Linux Workstation | =7.0 | |
| Fedora Hosted SSSD | <1.16.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2017:3379
- https://access.redhat.com/errata/RHSA-2018:1877
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12173
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1499354
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c4
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c16
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c17
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c18
- https://pagure.io/SSSD/sssd/c/1f2662c8f97c9c0fa250055d4b6750abfc6d0835?branch=master
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c15
- https://access.redhat.com/security/cve/CVE-2017-12173
- https://src.fedoraproject.org/rpms/sssd/c/4a8ad4c17440622010ce0dc138ca2042eb3eadb1?branch=f27
- https://bodhi.fedoraproject.org/updates/FEDORA-2017-39c5f8cd7e
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c29
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c30
- https://qa.fedoraproject.org/blockerbugs/propose_bug
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c31
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c32
- https://access.redhat.com/security/updates/classification/
- https://bugzilla.redhat.com/show_bug.cgi?id=1498173
Frequently Asked Questions
What is the severity of CVE-2017-12173?
CVE-2017-12173 is considered a high severity vulnerability due to its potential for injection attacks.
How do I fix CVE-2017-12173?
To fix CVE-2017-12173, upgrade the sssd package to version 1.16.0 or later.
Which systems are affected by CVE-2017-12173?
CVE-2017-12173 affects Red Hat Enterprise Linux desktop and server versions 6.0 and 7.0, among other derivatives.
Can CVE-2017-12173 be exploited by an unauthenticated user?
No, CVE-2017-12173 requires an authenticated attacker to exploit the vulnerability.
What is the main cause of CVE-2017-12173?
CVE-2017-12173 is caused by inadequate sanitization of requests in the sysdb_search_user_by_upn_res() function.
- agent/weakness
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/remedy
- agent/author
- agent/references
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-12173
- agent/software-canonical-lookup
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/6.0
- version/red hat enterprise linux desktop/7.0
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/6.0
- version/red hat enterprise linux server/7.0
- version/red hat enterprise linux server/7.4
- version/red hat enterprise linux server/7.5
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/6.0
- version/red hat enterprise linux workstation/7.0
- vendor/fedoraproject
- canonical/fedora hosted sssd