[SECURITY] Fedora 44 Update: lemonldap-ng-2.22.3-1.fc44

LemonLdap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as...

[SECURITY] Fedora 41 Update: lemonldap-ng-2.21.3-1.fc41

LemonLdap::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting. So you can have a full AAA protection for your web space as...

LemonLDAP::NG 操作系统命令注入漏洞

LemonLDAP::NG is the LemonLDAP::NG open source suite of Web single sign-on and access management software. An operating system command injection vulnerability exists in LemonLDAP::NG versions prior to 2.16.7 and 2.17 through 2.21.3, which stems from Safe jail not being localized during rule...

Linux Distros Unpatched Vulnerability : CVE-2019-13031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LemonLDAP::NG before 1.9.20 has an XML External Entity XXE issue when submitting a notification to the notification server. By default, the notification server ...

The vulnerability of the authentication system for web applications, LemonLDAP::NG, related to an error in processing authentication keys, allows a perpetrator to gain unauthorized access to sensitive information.

The vulnerability of the authentication system for web applications in LemonLDAP::NG is related to security mechanism errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to information...