Lucene search

K
centosCentOS ProjectCESA-2024:0145
HistoryJan 12, 2024 - 7:09 p.m.

ipa, python2 security update

2024-01-1219:09:24
CentOS Project
lists.centos.org
192
centos errata
security advisory
invalid csrf protection
identity management
authorization solution
traditional enterprise
cloud-based environment
cve page
merged security bulletin
affected packages
upstream details

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.5%

CentOS Errata and Security Advisory CESA-2024:0145

Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.

Security Fix(es):

  • ipa: Invalid CSRF protection (CVE-2023-5455)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2024-January/099176.html

Affected packages:
ipa-client
ipa-client-common
ipa-common
ipa-python-compat
ipa-server
ipa-server-common
ipa-server-dns
ipa-server-trust-ad
python2-ipaclient
python2-ipalib
python2-ipaserver

Upstream details at:
https://access.redhat.com/errata/RHSA-2024:0145

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.5%