624 matches found
EUVD-2024-52028
Malicious code in bioql PyPI...
EUVD-2024-19173
Malicious code in bioql PyPI...
EUVD-2021-7427
Malicious code in bioql PyPI...
ipa security update
An update is available for ipa. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rocky Enterprise Software Foundation Identity Management IdM is a centralized...
[SECURITY] Fedora 42 Update: freeipa-4.12.5-2.fc42
IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...
[SECURITY] Fedora 43 Update: freeipa-4.12.5-2.fc43
IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control, SELinux user roles, services. The solution provides features for further integration with Linux based clients SUDO, automount and integration...
Fedora 41 : freeipa (2025-1a3968c333)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-1a3968c333 advisory. - CVE-2025-7493: host to admin escalation prevention: https://www.freeipa.org/release-notes/4-12-5.html - Update FreeIPA to latest fixes from ipa-4-12 branch...
Fedora 42 : freeipa (2025-e41ba62ff1)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-e41ba62ff1 advisory. - CVE-2025-7493: host to admin escalation prevention: https://www.freeipa.org/release-notes/4-12-5.html - Update FreeIPA to latest fixes from ipa-4-12 branch...
Fedora 43 : freeipa (2025-54a485ee85)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-54a485ee85 advisory. - CVE-2025-7493: host to admin escalation prevention: https://www.freeipa.org/release-notes/4-12-5.html - Rebuild for Python 3.14.0rc3 - Update FreeIPA to...
RHSA-2025:17084 Red Hat Security Advisory: ipa security update
Bulletin has no description...
Oracle Linux 8 : idm:DL1 (ELSA-2025-17129)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17129 advisory. bind-dyndb-ldap 11.6-6 - Fix rpminspect warnings Resolves: RHEL-22497 custodia ipa 4.9.13-20.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug:...
ipa security update
4.12.2-14.0.1.5 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-14.5 - Resolves: RHEL-110068 EMBARGOED CVE-2025-7493 ipa: Privilege escalation from host to domain admin in FreeIPA 4.12.2-14.4 - Resolves: RHEL-1100...
Important: Red Hat Security Advisory: ipa security update
An update for ipa is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Important: Red Hat Security Advisory: ipa security update
An update for ipa is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...
AZL-68190 CVE-2025-7493 affecting package 389-ds-base 3.1.1-10
A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...
MAL-2025-12043 Malicious code in @zalastax/nolb-ipa (npm)
The package @zalastax/nolb-ipa was found to contain malicious code...
Malicious code in @zalastax/nolb-ipa (npm)
The package @zalastax/nolb-ipa was found to contain malicious code...
Oracle Linux 7 : ipa (ELSA-2025-9189)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9189 advisory. 4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890 Tenable has extracted the preceding descriptio...
ipa security update
4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890...
Critical: ipa
Issue Overview: A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM...