Описание
Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.
Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2017-7488
- https://access.redhat.com/errata/RHSA-2017:2285
- https://access.redhat.com/security/cve/CVE-2017-7488
- https://bugzilla.redhat.com/show_bug.cgi?id=1441604
- https://pagure.io/authconfig/c/0972f61ad4b5657ed89cf953e8f58f6513096224?branch=master
- http://www.securityfocus.com/bid/101784
Связанные уязвимости
Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.
Authconfig version 6.2.8 is vulnerable to an Information exposure while using SSSD to authenticate against remote server resulting in the leak of information about existing usernames.
ELSA-2017-2285: authconfig security, bug fix, and enhancement update (MODERATE)