733 matches found
CVE-2016-5404
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
DEBIAN-CVE-2016-5404
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
Command injection
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
CVE-2016-5404
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
UBUNTU-CVE-2016-5404
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
CVE-2016-5404
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
CVE-2016-5404
The CVE-2016-5404 vulnerability affects FreeIPA’s cert_revoke command, which fails to enforce the revoke certificate permission. This allows remote authenticated users to revoke arbitrary certificates by leveraging the retrieve certificate permission. The issue is described across multiple adviso...
CVE-2016-5404
The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...
CVE-2016-5414
FreeIPA 4.4.0 allows remote attackers to request an arbitrary SAN name for services...
PT-2016-6410 · Red Hat +2 · Freeipa +3
Name of the Vulnerable Software and Affected Versions: FreeIPA affected versions not specified Description: The issue concerns the cert revoke command in FreeIPA, which fails to check for the revoke certificate permission. This allows remote authenticated users to revoke arbitrary certificates by...
Fedora 23 : freeipa (2016-7898627d08)
security fix for CVE-2016-5404 related: https://bugzilla.redhat.com/showbug.cgi?id=1367883 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...
Fedora 24 : freeipa (2016-92a3655b70)
Security fix for CVE-2016-5404 Along with second revision of 4.3.2 update. ---- Update to FreeIPA 4.3.2 http://www.freeipa.org/page/Releases/4.3.2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted...
Fedora Update for freeipa FEDORA-2016-7898627d08
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for freeipa FEDORA-2016-92a3655b70
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 25 Update: freeipa-4.3.2-2.fc25
IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...
Fedora 23 : freeipa-4.2.2-1.fc23 (2015-4abcc8b937)
freeipa-4.2.2-1.fc23 - Update to upstream 4.2.2 - see http://www.freeipa.org/page/Releases/4.2.2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...
realmd security, bug fix, and enhancement update
0.16.1-5 - Revert 0.16.1-4 - Use samba by default - Resolves: rhbz1271618 0.16.1-4 - Fix regressions in 0.16.x releases - Resolves: rhbz1258745 - Resolves: rhbz1258488 0.16.1-3 - Fix regression accepting DNS domain names - Resolves: rhbz1243771 0.16.1-2 - Fix discarded patch: ipa-packages.patch...
[SECURITY] Fedora 22 Update: sssd-1.13.1-2.fc22
Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a plug-gable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...
[SECURITY] Fedora 23 Update: sssd-1.13.1-2.fc23
Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a plug-gable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...
Fedora Update for freeipa FEDORA-2015-4788
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...