View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2014-0249 severity low: SUSE including 148 source package names (libipa_hbac-devel-1.11.5.1-28.1, libipa_hbac-devel-1.14.2-3.1, …), 180 product×package rows across 13 product lines (SUSE Linux Enterprise Desktop 11 SP3, SUSE Linux Enterprise Desktop 12 SP1, … (13 product lines)): Fixed 158, Known Not Affected 22.
The System Security Services Daemon (SSSD) 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to bypass access restrictions via unspecified vectors.