CVE-2017-12173: Input Validation
First published: Tue Oct 03 2017(Updated: )
It was found that sssd's sysdb_search_user_by_upn_res() function before 1.16.0 did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for a given user, an authenticated attacker could use this flaw to retrieve it.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Enterprise Linux Desktop | =6.0 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =6.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Server Aus | =7.4 | |
| Redhat Enterprise Linux Server Eus | =7.4 | |
| Redhat Enterprise Linux Server Eus | =7.5 | |
| Redhat Enterprise Linux Workstation | =6.0 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| Fedoraproject Sssd | <1.16.0 | |
| redhat/sssd | <1.16.0 | 1.16.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2017:3379
- https://access.redhat.com/errata/RHSA-2018:1877
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12173
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1499354
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c4
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c16
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c17
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c18
- https://pagure.io/SSSD/sssd/c/1f2662c8f97c9c0fa250055d4b6750abfc6d0835?branch=master
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c15
- https://access.redhat.com/security/cve/CVE-2017-12173
- https://src.fedoraproject.org/rpms/sssd/c/4a8ad4c17440622010ce0dc138ca2042eb3eadb1?branch=f27
- https://bodhi.fedoraproject.org/updates/FEDORA-2017-39c5f8cd7e
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c29
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c30
- https://qa.fedoraproject.org/blockerbugs/propose_bug
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c31
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498173#c32
- https://access.redhat.com/security/updates/classification/
- https://bugzilla.redhat.com/show_bug.cgi?id=1498173
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-12173
- agent/software-canonical-lookup
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/6.0
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/7.4
- canonical/redhat enterprise linux server eus
- version/redhat enterprise linux server eus/7.4
- version/redhat enterprise linux server eus/7.5
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/6.0
- version/redhat enterprise linux workstation/7.0
- vendor/fedoraproject
- canonical/fedoraproject sssd
- package-manager/redhat