System Security Services Daemon Out-of-Bounds Read Vulnerability in PAM Passkey Responder Leading to Local Denial-of-Service

Vulnerability

An out-of-bounds read vulnerability has been identified in the System Security Services Daemon (SSSD) within the PAM passkey responder. The issue arises because the pam_passkey_child_read_data() function improperly manages raw bytes from a pipe, treating them as NUL-terminated C strings without proper termination. This flaw can be exploited by a local attacker who sends a crafted passkey authentication request, causing the SSSD PAM responder to crash and leading to a local denial-of-service condition.

Impact

Exploitation of this vulnerability causes the SSSD service to crash, disrupting authentication processes and potentially leading to resource consumption issues.

Added: Apr 15, 2026, 7:32 PM

Updated: Apr 15, 2026, 7:32 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

5.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

5.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

System Security Services Daemon Out-of-Bounds Read Vulnerability in PAM Passkey Responder Leading to Local Denial-of-Service

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating