{"affected":[{"ecosystem_specific":{"binaries":[{"libipa_hbac-devel":"1.16.1-3.3.1","libipa_hbac0":"1.16.1-3.3.1","libsss_certmap-devel":"1.16.1-3.3.1","libsss_certmap0":"1.16.1-3.3.1","libsss_idmap-devel":"1.16.1-3.3.1","libsss_idmap0":"1.16.1-3.3.1","libsss_nss_idmap-devel":"1.16.1-3.3.1","libsss_nss_idmap0":"1.16.1-3.3.1","libsss_simpleifp-devel":"1.16.1-3.3.1","libsss_simpleifp0":"1.16.1-3.3.1","python3-sssd-config":"1.16.1-3.3.1","sssd":"1.16.1-3.3.1","sssd-32bit":"1.16.1-3.3.1","sssd-ad":"1.16.1-3.3.1","sssd-ipa":"1.16.1-3.3.1","sssd-krb5":"1.16.1-3.3.1","sssd-krb5-common":"1.16.1-3.3.1","sssd-ldap":"1.16.1-3.3.1","sssd-proxy":"1.16.1-3.3.1","sssd-tools":"1.16.1-3.3.1","sssd-wbclient":"1.16.1-3.3.1","sssd-wbclient-devel":"1.16.1-3.3.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15","name":"sssd","purl":"pkg:rpm/suse/sssd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.16.1-3.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for sssd fixes the following security issue:\n\n- CVE-2018-10852: Set stricter permissions on /var/lib/sss/pipes/sudo to\n  prevent the disclosure of sudo rules for arbitrary users (bsc#1098377).\n","id":"SUSE-SU-2018:2144-1","modified":"2018-07-30T16:11:40Z","published":"2018-07-30T16:11:40Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2018/suse-su-20182144-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1098163"},{"type":"REPORT","url":"https://bugzilla.suse.com/1098377"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-10852"}],"related":["CVE-2018-10852"],"summary":"Security update for sssd","upstream":["CVE-2018-10852"]}