2017-10-16 12:31:07 -04:00
{
2019-03-17 21:31:08 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "secalert@redhat.com" ,
"ID" : "CVE-2015-5292" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
2017-10-16 12:31:07 -04:00
{
2019-03-17 21:31:08 +00:00
"lang" : "eng" ,
"value" : "Memory leak in the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause a denial of service (memory consumption) via a large number of logins that trigger parsing of PAC blobs during Kerberos authentication."
2017-10-16 12:31:07 -04:00
}
2019-03-17 21:31:08 +00:00
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "RHSA-2015:2355" ,
"refsource" : "REDHAT" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2015-2355.html"
} ,
{
"name" : "RHSA-2015:2019" ,
"refsource" : "REDHAT" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2015-2019.html"
} ,
{
"name" : "[sssd-users] 20151021 A security bug in SSSD 1.10 and later (CVE-2015-5292)" ,
"refsource" : "MLIST" ,
"url" : "http://permalink.gmane.org/gmane.linux.redhat.sssd.user/3422"
} ,
{
"name" : "1034038" ,
"refsource" : "SECTRACK" ,
"url" : "http://www.securitytracker.com/id/1034038"
} ,
{
"name" : "77529" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/77529"
} ,
{
"name" : "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html" ,
"refsource" : "CONFIRM" ,
"url" : "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
} ,
{
"name" : "https://fedorahosted.org/sssd/attachment/ticket/2803/0001-Fix-memory-leak-in-sssdpac_verify.patch" ,
"refsource" : "CONFIRM" ,
"url" : "https://fedorahosted.org/sssd/attachment/ticket/2803/0001-Fix-memory-leak-in-sssdpac_verify.patch"
} ,
{
"name" : "FEDORA-2015-cdea5324a8" ,
"refsource" : "FEDORA" ,
"url" : "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169613.html"
} ,
{
"name" : "FEDORA-2015-202c127199" ,
"refsource" : "FEDORA" ,
"url" : "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169110.html"
} ,
{
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=1267580" ,
"refsource" : "CONFIRM" ,
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1267580"
} ,
{
"name" : "FEDORA-2015-7b47df69d3" ,
"refsource" : "FEDORA" ,
"url" : "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169597.html"
} ,
{
"name" : "https://fedorahosted.org/sssd/ticket/2803" ,
"refsource" : "CONFIRM" ,
"url" : "https://fedorahosted.org/sssd/ticket/2803"
} ,
{
"name" : "https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.1" ,
"refsource" : "CONFIRM" ,
"url" : "https://fedorahosted.org/sssd/wiki/Releases/Notes-1.13.1"
}
]
}
}
