CVE-2015-5292

Memory leak in the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause a denial of service (memory consumption) via a large number of logins that trigger parsing of PAC blobs during Kerberos authentication.

Date published : 2015-10-29

http://www.securityfocus.com/bid/77529

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html