The System Security Services Daemon service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch and the Pluggable Authentication Modules interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. The following packages have been upgraded to a later upstream version: sssd . Security Fix: * sssd: information leak from the sssd-sudo responder For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. This issue was discovered by Jakub Hrozek . Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed : 1385665 - Incorrect error code returned from krb5_child 1416528 - sssd in cross realm trust configuration should be able to use AD KDCs from a client site defined in sssd.conf or a snippet 1459348 - extend sss-certmap man page regarding priority processing 1509691 - Document how to change the regular expression for SSSD so that group names with an @-sign can be parsed