CLSA-2026-1778881463 ipa: Fix of 3 CVEs

CVE-2023-5455: fix CSRF vulnerability by adding Referer header check to all session endpoints - CVE-2024-1481: validate Kerberos principal name before kinit and pass it with -- separator to prevent option injection - CVE-2024-11029: scrub administrative passwords from process command line and...

Astra Linux - уязвимость в freeipa

A flaw was discovered in FreeIPA. This issue may allow a remote attacker to create an HTTP request with parameters that can be interpreted as command arguments for kinit on the FreeIPA server, resulting in a denial of service...

EUVD-2024-17231

Malicious code in bioql PyPI...

CVE-2022-41916

Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC via PKINIT and kinit via PKINIT, as well as any third-party applications using Heimdal's...

ROS-20240812-01

The vulnerability in the Kerberos 5 Heimdal implementation is due to bugs in the Heimdal PKI certificate checks, affecting KDC via PKINIT and kinit via PKINIT, as well as any third-party applications, that utilize libhx509 Heimdal. Exploitation of the vulnerability could allow an attacker acting...

SUSE CVE-2024-1481

A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service...

OPENSUSE-SU-2024:10527-1 kinit-32bit-5.29.0-1.1 on GA media

These are all security issues fixed in the kinit-32bit-5.29.0-1.1 package on the GA media of openSUSE Tumbleweed...

freeipa: specially crafted HTTP requests potentially lead to denial of service

A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service...

freeipa: specially crafted HTTP requests potentially lead to denial of service

A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service...

DEBIAN-CVE-2024-1481

A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service...

UBUNTU-CVE-2024-1481

A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service...

CVE-2024-1481

A flaw was found in FreeIPA. This issue may allow a remote attacker to craft a HTTP request with parameters that can be interpreted as command arguments to kinit on the FreeIPA server, which can lead to a denial of service. Mitigation Mitigation for this issue is either not available or the...

PT-2024-1902 · Freeipa +7 · Freeipa +7

Name of the Vulnerable Software and Affected Versions: FreeIPA affected versions not specified Description: The issue is related to insufficient input validation in the ipautil.py script's run function on the FreeIPA server, specifically with the user parameter /sip/session/login password. This m...

SUSE CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Heimdal vulnerability (USN-5766-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5766-1 advisory. It was discovered that Heimdal did not properly manage memory when normalizing Unicode. An attacker could possibly use this issue to cause...

Vulnerabilities fixed in Heimdal

Vulnerabilities have been fixed in Heimdal, an implementation of ASN.1/DER, PFIX and Kerberos. The vulnerabilities allow a remote malicious party to potentially execute arbitrary code execute in Heimdal's Key Distribution Center KDC, obtain secret keys obtain secret keys when using 1DES, 3DES, or...

Denial of service

Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC via PKINIT and kinit via PKINIT, as well as any third-party applications using Heimdal's...

CVE-2022-41916

CVE-2022-41916 is a denial-of-service vulnerability in Heimdal’s PKI certificate validation (libhx509). The issue affects Heimdal versions prior to 7.7.1, including KDC via PKINIT and kinit via PKINIT, and any third-party apps using libhx509. Public documentation consistently states that upgradin...

CVE-2022-41916

Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC via PKINIT and kinit via PKINIT, as well as any third-party applications using Heimdal's...

Security update for libheimdal (moderate)

openSUSE Security Update: Security update for libheimdal Announcement ID: openSUSE-SU-2019:1888-1 Rating: moderate References: 1047218 1084909 Cross-References: CVE-2018-16860 CVE-2019-12098 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...