The (1) sss_autofs_cmd_getautomntent and (2) sss_autofs_cmd_getautomntbyname function in responder/autofs/autofssrv_cmd.c and the (3) ssh_cmd_parse_request function in responder/ssh/sshsrv_cmd.c in System Security Services Daemon (SSSD) before 1.9.4 allow remote attackers to cause a denial of service (out-of-bounds read, crash, and restart) via a crafted SSSD packet.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-02-24T19:00:00Z

Updated: 2024-08-06T14:18:09.559Z

Reserved: 2012-12-06T00:00:00Z

Link: CVE-2013-0220

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-02-24T19:55:01.300

Modified: 2024-11-21T01:47:05.613

Link: CVE-2013-0220

cve-icon Redhat

Severity : Low

Publid Date: 2013-01-23T00:00:00Z

Links: CVE-2013-0220 - Bugzilla