CVE-2026-6245

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions System Security Services Daemon (SSSD) (affected versions not specified)

Description A flaw exists in the System Security Services Daemon (SSSD) where the pam passkey child read data() function within the PAM passkey responder fails to properly handle raw bytes received from a pipe. The data is treated as a NUL-terminated C string without explicit termination, leading to an out-of-bounds read when processed by functions such as snprintf(). A local attacker could trigger this by initiating a crafted passkey authentication request, causing the SSSD PAM responder to crash and resulting in a local Denial of Service (DoS).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-805

Related Identifiers

CVE-2026-6245

OESA-2026-2169

OESA-2026-2170

OESA-2026-2171

OPENSUSE-SU-2026:10659-1

USN-8355-1

Affected Products

Sssd

CVE-2026-6245

Weakness Enumeration

Related Identifiers

Affected Products

References · 19