CVE-2022-4254

Published: 1 February 2023

sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters

Notes

Author	Note
mdeslaur	introduced in 1.15.3

8.8

Package	Release	Status
sssd Launchpad, Ubuntu, Debian	lunar	Not vulnerable
	trusty	Ignored (end of standard support)
	jammy	Not vulnerable (2.6.3-1ubuntu3.2)
	kinetic	Not vulnerable
	upstream	Released (2.3.1-1)
	bionic	Needed
	focal	Released (2.2.3-3ubuntu0.11)
	xenial	Not vulnerable (code not present)
	Patches: upstream: https://github.com/SSSD/sssd/commit/a2b9a84460429181f2a4fa7e2bb5ab49fd561274 upstream: https://github.com/SSSD/sssd/commit/1c40208aa1e0f9a17cc4f336c99bcaa6977592d3 (bp maybe)

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.