RedHatRHSA-2008:0860(RHSA-2008:0860) Important: ipa security update
0.006 Low
EPSS
Percentile
79.3%
Red Hat Enterprise IPA is an integrated solution to provide
centrally-managed Identity (machines, users, virtual machines, groups,
authentication credentials), Policy (configuration settings, access control
information) and Audit (events, logs, analysis) services.
A flaw was found in the Red Hat Enterprise IPA installation procedure. The
master Kerberos password was set up in the LDAP server in such a way that
it was possible to retrieve the password via an anonymous LDAP connection.
(CVE-2008-3274)
Note: the master Kerberos password is used to encrypt keys. This flaw does
not lead to individual keys being exposed.
Users of Red Hat IPA should upgrade to these updated packages and perform
the operations explained in the solution to resolve this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | i386 | ipa-python | < 1.0.0-23.el5ipa | ipa-python-1.0.0-23.el5ipa.i386.rpm |
| RedHat | 5 | x86_64 | ipa-client | < 1.0.0-23.el5ipa | ipa-client-1.0.0-23.el5ipa.x86_64.rpm |
| RedHat | 5 | x86_64 | ipa-server-selinux | < 1.0.0-23.el5ipa | ipa-server-selinux-1.0.0-23.el5ipa.x86_64.rpm |
| RedHat | 5 | i386 | ipa-admintools | < 1.0.0-23.el5ipa | ipa-admintools-1.0.0-23.el5ipa.i386.rpm |
| RedHat | 5 | i386 | ipa-server | < 1.0.0-23.el5ipa | ipa-server-1.0.0-23.el5ipa.i386.rpm |
| RedHat | 5 | i386 | ipa-server-selinux | < 1.0.0-23.el5ipa | ipa-server-selinux-1.0.0-23.el5ipa.i386.rpm |
| RedHat | 5 | x86_64 | ipa-admintools | < 1.0.0-23.el5ipa | ipa-admintools-1.0.0-23.el5ipa.x86_64.rpm |
| RedHat | 5 | x86_64 | ipa-python | < 1.0.0-23.el5ipa | ipa-python-1.0.0-23.el5ipa.x86_64.rpm |
| RedHat | 5 | x86_64 | ipa-server | < 1.0.0-23.el5ipa | ipa-server-1.0.0-23.el5ipa.x86_64.rpm |
| RedHat | 5 | i386 | ipa-client | < 1.0.0-23.el5ipa | ipa-client-1.0.0-23.el5ipa.i386.rpm |
Related
