CVE-2012-4546

The default configuration for IPA servers in Red Hat Enterprise Linux 6, when revoking a certificate from an Identity Management replica, does not properly update another Identity Management replica, which causes inconsistent Certificate Revocation Lists CRLs to be used and might allow remote...

Default configuration

The default configuration for IPA servers in Red Hat Enterprise Linux 6, when revoking a certificate from an Identity Management replica, does not properly update another Identity Management replica, which causes inconsistent Certificate Revocation Lists CRLs to be used and might allow remote...

CVE-2012-4546

CVE-2012-4546 affects IPA in Red Hat Enterprise Linux 6. When revoking a certificate on one Identity Management replica, CRLs may not be updated on another replica, leading to inconsistent CRLs and potential bypass of access restrictions via a revoked certificate. The connected sources confirm th...

CVE-2012-4546

The default configuration for IPA servers in Red Hat Enterprise Linux 6, when revoking a certificate from an Identity Management replica, does not properly update another Identity Management replica, which causes inconsistent Certificate Revocation Lists CRLs to be used and might allow remote...

CVE-2013-0336

The ipapwdchpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipapwdextop.c in the directory server dirsrv in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service crash via a connection request without a username/dn, related to the 389 directory server...

CentOS Update for libipa_hbac CESA-2013:0663 centos6

Check for the Version of libipahbac OpenVAS Vulnerability Test CentOS Update for libipahbac CESA-2013:0663 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Scientific Linux Security Update : sssd on SL6.x i386/x86_64 (20130319)

When SSSD was configured as a Microsoft Active Directory client by using the new Active Directory provider introduced in SLSA-2013:0508, the Simple Access Provider 'accessprovider = simple' in '/etc/sssd/sssd.conf' did not handle access control correctly. If any groups were specified with the...

CentOS Update for ipa-admintools CESA-2013:0528 centos6

Check for the Version of ipa-admintools OpenVAS Vulnerability Test CentOS Update for ipa-admintools CESA-2013:0528 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

CentOS Update for pki-ca CESA-2013:0511 centos6

Check for the Version of pki-ca OpenVAS Vulnerability Test CentOS Update for pki-ca CESA-2013:0511 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

CentOS Update for ipa-admintools CESA-2013:0528 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS 6 : ipa (CESA-2013:0528)

Updated ipa packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives...

Scientific Linux Security Update : ipa on SL6.x i386/x86_64 (20130221)

It was found that the current default configuration of IPA servers did not publish correct CRLs Certificate Revocation Lists. The default configuration specifies that every replica is to generate its own CRL; however, this can result in inconsistencies in the CRL contents provided to clients from...

Scientific Linux Security Update : pki-core on SL6.x i386/x86_64 (20130221)

Note: The Certificate Authority component provided by this advisory cannot be used as a standalone server. It is installed and operates as a part of Identity Management the IPA component in Scientific Linux. Multiple cross-site scripting flaws were discovered in Certificate System. An attacker...

Fedora Update for freeipa FEDORA-2013-2434

Check for the Version of freeipa OpenVAS Vulnerability Test Fedora Update for freeipa FEDORA-2013-2434 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

ipa security update

CentOS Errata and Security Advisory CESA-2013:0528 Updated ipa packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common...

ipa security, bug fix and enhancement update

3.0.0-25.el6 - Filter generated winbind dependencies so the right version of samba can be installed. 905594 3.0.0-24.el6 - Add certmonger condrestart to server post scriptlet 903758 - Make certmonger a pre Requires 903758 - Add selinux-policy to Requirespre to avoid post scriptlet AVCs 903758 - S...

pki-core security, bug fix and enhancement update

9.0.3-30 - Resolves 902474 - upgrading IPA from 2.2 to 3.0 sees certmonger errors 9.0.3-29 - Resolves 891985 - Increase FreeIPA root CA validity 9.0.3-28 - Resolves 885790 - Multiple cross-site scripting flaws by displaying CRL or processing profile 9.0.3-27 - Resolves 867640 - ipa-replica-instal...

RedHat Update for ipa RHSA-2013:0528-02

Check for the Version of ipa OpenVAS Vulnerability Test RedHat Update for ipa RHSA-2013:0528-02 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

RHEL 6 : ipa (RHSA-2013:0528)

Updated ipa packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives...

RHEL 6 : pki-core (RHSA-2013:0511)

Updated pki-core packages that fix multiple security issues, two bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...