MiracleLinux 4 : ipa-3.0.0-47.0.1.AXS4 (AXSA:2015-419:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-419:01 advisory. IPA is an integrated solution to provide centrally managed Identity machine, user, virtual machines, groups, authentication credentials, Policy...

MiracleLinux 7 : ipa-4.4.0-14.1.1.0.1.el7.AXS7 (AXSA:2017-1217:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1217:01 advisory. IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access...

MiracleLinux 7 : ipa-4.2.0-15.19.0.1.el7.AXS7 (AXSA:2016-658:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-658:03 advisory. IPA is an integrated solution to provide centrally managed Identity machine, user, virtual machines, groups, authentication credentials, Policy configuration...

MiracleLinux 9 : ipa-4.12.2-1.el9_5.3 (AXSA:2025-9559:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9559:01 advisory. freeipa: Administrative user data leaked through systemd journal CVE-2024-11029 Tenable has extracted the preceding description block directly from the...

SUSE CVE-2023-54225

In the Linux kernel, the following vulnerability has been resolved: net: ipa: only reset hashed tables when supported Last year, the code that manages GSI channel transactions switched from using spinlock-protected linked lists to using indexes into the ring buffer used for a channel. Recently,...

sssd security update

1.16.5-10.0.5.16 - krb5: disable Kerberos localauth an2ln plugin for AD/IPA Orabug: 38621159...

Oracle Linux 10 : ipa (ELSA-2025-20994)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20994 advisory. 4.12.2-24.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-24.1 -...

Oracle Linux 9 : ipa (ELSA-2025-20928)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20928 advisory. 4.12.2-22.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-22.1 -...

ipa security update

4.12.2-22.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-22.1 - Resolves: RHEL-118449 ipa: Privilege escalation from host to domain admin in FreeIPA 4.12.2-22 - Resolves: RHEL-107483 ipa-ca-install fails on...

RLSA-2025:20994 Important: ipa security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

ipa security update

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rocky Enterprise Software Foundation Identity Management IdM is a centralized...

RHSA-2025:20994 Red Hat Security Advisory: ipa security update

Bulletin has no description...

Oracle Linux 7 : ipa (ELSA-2025-17649)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17649 advisory. - Fixes CVE-2025-7493 Enforce uniqueness across krbprincipalname Tenable has extracted the preceding description block directly from the Oracle Linux security...

FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA

A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...

ipa security update

4.6.8-5.0.5.el79.17 - Fixes CVE-2025-7493 Enforce uniqueness across krbprincipalname - and krbcanonicalname Orabug: 38520120 4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890...

RHEL 9 : ipa (RHSA-2025:20928)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:20928 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-base...

Fedora 43 : sssd (2025-cf4f628312)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-cf4f628312 advisory. - Fixes CVE-2025-11561 - Resolves: https://bugzilla.redhat.com/showbug.cgi?id=2402728 After startup SSSD already creates a Kerberos configuration snippet in...

RLSA-2025:17085 Important: ipa security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

EUVD-2018-17619

Malware in sbrugna...

EUVD-2018-17613

Malware in sbrugna...