TencentOS Server 3: idm:DL1 (TSSA-2025:1008)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:1008 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CLSA-2025-1763391572 ipa: Fix of CVE-2025-7493

CVE-2025-7493: fix privilege escalation, validate krbCanonicalName to prevent host-to-realm admin escalation, blocks unauthorized admin actions and data exfiltration...

ipa security update

4.6.8-5.0.5.el79.17 - Fixes CVE-2025-7493 Enforce uniqueness across krbprincipalname - and krbcanonicalname Orabug: 38520120 4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890...

FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA

A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...

freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA

A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...

Red Hat FreeIPA 安全漏洞

Red Hat FreeIPA is a suite of integrated security information management solutions from Red Hat USA. The product provides identity management, policy management, and audit management IPA capabilities for Linux and Unix computer networks. A security vulnerability exists in Red Hat FreeIPA that ste...