Jhrozek

**Name of the Vulnerable Software and Affected Versions** SSSD version 1.9.0 **Description** A flaw was found in the SSSD's access-provider logic, causing the result of the HBAC rule processing to be ignored when the access-provider handles the setup of the user's SELinux user context. **Recommendations** For SSSD version 1.9.0, consider updating to a newer version that addresses this issue, as the current version ignores the result of HBAC rule processing under specific conditions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.