ipa, python2 security update

2024-01-1219:09:24

CentOS Project

lists.centos.org

192

centos errata

security advisory

invalid csrf protection

identity management

authorization solution

traditional enterprise

cloud-based environment

cve page

merged security bulletin

affected packages

upstream details

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.5%

JSON

CentOS Errata and Security Advisory CESA-2024:0145

Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.

Security Fix(es):

ipa: Invalid CSRF protection (CVE-2023-5455)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2024-January/099176.html

Affected packages:
ipa-client
ipa-client-common
ipa-common
ipa-python-compat
ipa-server
ipa-server-common
ipa-server-dns
ipa-server-trust-ad
python2-ipaclient
python2-ipalib
python2-ipaserver

Upstream details at:
https://access.redhat.com/errata/RHSA-2024:0145

OSVersionArchitecturePackageVersionFilename
CentOS7x86_64ipa-client< 4.6.8-5.el7.centos.16ipa-client-4.6.8-5.el7.centos.16.x86_64.rpm
CentOS7noarchipa-client-common< 4.6.8-5.el7.centos.16ipa-client-common-4.6.8-5.el7.centos.16.noarch.rpm
CentOS7noarchipa-common< 4.6.8-5.el7.centos.16ipa-common-4.6.8-5.el7.centos.16.noarch.rpm
CentOS7noarchipa-python-compat< 4.6.8-5.el7.centos.16ipa-python-compat-4.6.8-5.el7.centos.16.noarch.rpm
CentOS7x86_64ipa-server< 4.6.8-5.el7.centos.16ipa-server-4.6.8-5.el7.centos.16.x86_64.rpm
CentOS7noarchipa-server-common< 4.6.8-5.el7.centos.16ipa-server-common-4.6.8-5.el7.centos.16.noarch.rpm
CentOS7noarchipa-server-dns< 4.6.8-5.el7.centos.16ipa-server-dns-4.6.8-5.el7.centos.16.noarch.rpm
CentOS7x86_64ipa-server-trust-ad< 4.6.8-5.el7.centos.16ipa-server-trust-ad-4.6.8-5.el7.centos.16.x86_64.rpm
CentOS7noarchpython2-ipaclient< 4.6.8-5.el7.centos.16python2-ipaclient-4.6.8-5.el7.centos.16.noarch.rpm
CentOS7noarchpython2-ipalib< 4.6.8-5.el7.centos.16python2-ipalib-4.6.8-5.el7.centos.16.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
CentOS	7	x86_64	ipa-client	< 4.6.8-5.el7.centos.16	ipa-client-4.6.8-5.el7.centos.16.x86_64.rpm
CentOS	7	noarch	ipa-client-common	< 4.6.8-5.el7.centos.16	ipa-client-common-4.6.8-5.el7.centos.16.noarch.rpm
CentOS	7	noarch	ipa-common	< 4.6.8-5.el7.centos.16	ipa-common-4.6.8-5.el7.centos.16.noarch.rpm
CentOS	7	noarch	ipa-python-compat	< 4.6.8-5.el7.centos.16	ipa-python-compat-4.6.8-5.el7.centos.16.noarch.rpm
CentOS	7	x86_64	ipa-server	< 4.6.8-5.el7.centos.16	ipa-server-4.6.8-5.el7.centos.16.x86_64.rpm
CentOS	7	noarch	ipa-server-common	< 4.6.8-5.el7.centos.16	ipa-server-common-4.6.8-5.el7.centos.16.noarch.rpm
CentOS	7	noarch	ipa-server-dns	< 4.6.8-5.el7.centos.16	ipa-server-dns-4.6.8-5.el7.centos.16.noarch.rpm
CentOS	7	x86_64	ipa-server-trust-ad	< 4.6.8-5.el7.centos.16	ipa-server-trust-ad-4.6.8-5.el7.centos.16.x86_64.rpm
CentOS	7	noarch	python2-ipaclient	< 4.6.8-5.el7.centos.16	python2-ipaclient-4.6.8-5.el7.centos.16.noarch.rpm
CentOS	7	noarch	python2-ipalib	< 4.6.8-5.el7.centos.16	python2-ipalib-4.6.8-5.el7.centos.16.noarch.rpm