New subject: [Bug 2402728] CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems [fedora-all]

9 Oct 2025

      https://bugzilla.redhat.com/show_bug.cgi?id=2402728
Bug ID: 2402728
           Summary: CVE-2025-11561 sssd: SSSD default Kerberos
                    configuration allows privilege escalation on AD-joined
                    Linux systems [fedora-all]
           Product: Fedora
           Version: 42
            Status: NEW
        Whiteboard: {"flaws": ["1fb766e2-a79d-4ca8-97b7-362f32c866ca"]}
         Component: sssd
          Keywords: Security, SecurityTracking
          Severity: high
          Priority: high
          Assignee: sssd-maintainers@lists.fedoraproject.org
          Reporter: abhraj@redhat.com
        QA Contact: extras-qa@fedoraproject.org
                CC: abokovoy@redhat.com, atikhono@redhat.com,
                    lslebodn@redhat.com, pbrezina@redhat.com,
                    sbose@redhat.com, ssorce@redhat.com,
                    sssd-maintainers@lists.fedoraproject.org
            Blocks: 2402727
  Target Milestone: ---
    Classification: Fedora
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
The following link provides references to all essential vulnerability
management information. If something is wrong or missing, please contact a
member of PSIRT.
https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essenti...
-- 
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2402728

Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report...

[Bug 2402728] New: CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems [fedora-all]