{"affected":[{"ecosystem_specific":{"binaries":[{"libipa_hbac-devel":"2.9.5-160000.3.1","libipa_hbac0":"2.9.5-160000.3.1","libnfsidmap-sss":"2.9.5-160000.3.1","libsss_certmap-devel":"2.9.5-160000.3.1","libsss_certmap0":"2.9.5-160000.3.1","libsss_idmap-devel":"2.9.5-160000.3.1","libsss_idmap0":"2.9.5-160000.3.1","libsss_nss_idmap-devel":"2.9.5-160000.3.1","libsss_nss_idmap0":"2.9.5-160000.3.1","python3-ipa_hbac":"2.9.5-160000.3.1","python3-sss-murmur":"2.9.5-160000.3.1","python3-sss_nss_idmap":"2.9.5-160000.3.1","python3-sssd-config":"2.9.5-160000.3.1","sssd":"2.9.5-160000.3.1","sssd-ad":"2.9.5-160000.3.1","sssd-cifs-idmap-plugin":"2.9.5-160000.3.1","sssd-dbus":"2.9.5-160000.3.1","sssd-ipa":"2.9.5-160000.3.1","sssd-kcm":"2.9.5-160000.3.1","sssd-krb5":"2.9.5-160000.3.1","sssd-krb5-common":"2.9.5-160000.3.1","sssd-ldap":"2.9.5-160000.3.1","sssd-proxy":"2.9.5-160000.3.1","sssd-tools":"2.9.5-160000.3.1","sssd-winbind-idmap":"2.9.5-160000.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 16.0","name":"sssd","purl":"pkg:rpm/opensuse/sssd&distro=openSUSE%20Leap%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.9.5-160000.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for sssd fixes the following issues:\n\n- CVE-2025-11561: Fixed default Kerberos configuration allowing privilege\n  escalation on AD-joined Linux systems (bsc#1244325)\n","id":"openSUSE-SU-2026:20001-1","modified":"2026-01-02T16:58:16Z","published":"2026-01-02T16:58:16Z","references":[{"type":"ADVISORY","url":null},{"type":"REPORT","url":"https://bugzilla.suse.com/1244325"},{"type":"REPORT","url":"https://bugzilla.suse.com/1251827"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-11561"}],"related":["CVE-2025-11561"],"summary":"Security update for sssd","upstream":["CVE-2025-11561"]}