2 matches found
authentik 授权问题漏洞
authentik is an open source identity provisioning application from authentik Open Source. Authentik suffers from an authorization issue vulnerability that originates from allowing password logins to be bypassed by adding an X-Forwarded-For header with an unresolvable IP address, which can be used...
USN-5825-2 pam regressions
USN-5825-1 fixed vulnerabilities in PAM. Unfortunately that update was incomplete and could introduce a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that PAM did not correctly restrict login from an IP address that is...