ALBA-2022:0357 pki-core:10.6 bug fix and enhancement update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Bug Fixes and Enhancements: Reinstall of the same ipa-replica fails with 'RuntimeError: CA configuration failed.' BZ2024676 ipa: ERROR: 'Certificate operation cannot be completed: Unable...

CentOS: Security Advisory for ipa-client (CESA-2021:5195)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

ipa, python2 security update

CentOS Errata and Security Advisory CESA-2021:5195 An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

opencryptoki bug fix and enhancement update

The opencryptoki packages contain version 2.11 of the PKCS11 API, implemented for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages includes support for the IBM 4758 Cryptographic CoProcessor with the PKCS11 firmware loaded, the IBM eServer Cryptographic Accelerator FC 4960 ...

CentOS 7 : ipa (RHSA-2021:5195)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:5195 advisory. - A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name- based authentication. The Samba AD DC, could become...

Scientific Linux Security Update : ipa on SL7.x x86_64 (2021:5195)

The remote Scientific Linux 7 host has packages installed that are affected by a vulnerability as referenced in the SLSA-2021:5195-1 advisory. - samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets CVE-2020-25719 Note that Nessus has not tested for this issue but has...

ipa security and bug fix update

4.6.8-5.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.8-5.el79.10 - Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server - Fix certrequest for KDC cert - Resolves: 2021444 - CVE-2020-25719...

samba security and bug fix update

4.10.16-17 - related: 2019673 - Add missing checks for IPA DC server role 4.10.16-16 - resolves: 2019661 - Fix CVE-2016-2124 - resolves: 2019673 - Fix CVE-2020-25717 - resolves: 2021428 - Add missing PAC buffer types to krb5pac.idl...

RHEL 7 : ipa (RHSA-2021:5195)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:5195 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based...

Oracle Linux 7 : ipa (ELSA-2021-5195)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-5195 advisory. 4.6.8-5.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.8-5.el79.10 - Resolves: 2025848 - RHEL 8.6 IPA...

Moderate: Red Hat Security Advisory: ipa security and bug fix update

An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

idm:DL1 security update

An update is available for ipa, python-jwcrypto, custodia, bind-dyndb-ldap, python-qrcode, softhsm, slapi-nis, python-yubico, python-kdcproxy, opendnssec, ipa-healthcheck, pyusb. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Security fix for the ALT Linux 10 package samba version 4.14.10-alt3

Dec. 13, 2021 Evgeny Sinelnikov 4.14.10-alt3 - Update for the latest fixes release of Samba 4.14 + CVE-2020-25727 idmapnss, krb5 and s3-auth regressions + CVE-2021-3670 ldapserver, dsdb/anr and ldb libldb-2.3.2-alt2 regressions + smbd: s3-dsgetdcname: handle numips == 0 + dsdb: Use...

Code injection in FreeIPA

A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way the internal function berscanf was used in some components of the IPA server, which parsed kerberos key data. An unauthenticated attacker who could trigger...

[SECURITY] Fedora 34 Update: freeipa-4.9.6-4.fc34

IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...

GSD-2021-1002326 net/ipa: ipa_resource: Fix wrong for loop range

net/ipa: iparesource: Fix wrong for loop range This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.5 by commit...

ipa bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

ALBA-2021:4230 ipa bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

ipa bug fix and enhancement update

An update is available for ipa, python-jwcrypto, custodia, bind-dyndb-ldap, python-qrcode, softhsm, slapi-nis, python-yubico, python-kdcproxy, opendnssec, ipa-healthcheck, pyusb. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

NewStart CGSL CORE 5.04 / MAIN 5.04 : ipa Vulnerability (NS-SA-2021-0104)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has ipa packages installed that are affected by a vulnerability: - In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing elements from untrusted sources - even after sanitizing it - to one ...