Login
Newsletter
Werbung

Sicherheit: Denial of Service in ipa
Aktuelle Meldungen Distributionen
Name: Denial of Service in ipa
ID: RHSA-2024:2147
Distribution: Red Hat
Plattformen: Red Hat Enterprise Linux CRB (v. 9), Red Hat Enterprise Linux AppStream (v. 9)
Datum: Mi, 1. Mai 2024, 21:44
Referenzen: https://issues.redhat.com/browse/RHEL-11652
https://bugzilla.redhat.com/show_bug.cgi?id=2262169
https://access.redhat.com/security/cve/CVE-2024-1481
https://issues.redhat.com/browse/RHEL-21812
https://issues.redhat.com/browse/RHEL-14842
https://issues.redhat.com/browse/RHEL-23621
https://issues.redhat.com/browse/RHEL-15443
https://issues.redhat.com/browse/RHEL-21937
https://issues.redhat.com/browse/RHEL-22372
https://issues.redhat.com/browse/RHEL-25738
https://issues.redhat.com/browse/RHEL-21810
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.4_release_notes/index
https://issues.redhat.com/browse/RHEL-16985
https://issues.redhat.com/browse/RHEL-14428
https://issues.redhat.com/browse/RHEL-23627
https://issues.redhat.com/browse/RHEL-23625
https://access.redhat.com/errata/RHSA-2024:2147
https://issues.redhat.com/browse/RHEL-21811
https://issues.redhat.com/browse/RHEL-21804
https://issues.redhat.com/browse/RHEL-14292
https://issues.redhat.com/browse/RHEL-21059
https://issues.redhat.com/browse/RHEL-15444
https://issues.redhat.com/browse/RHEL-25815
https://issues.redhat.com/browse/RHEL-4966
https://issues.redhat.com/browse/RHEL-28258
Applikationen: IPA

Originalnachricht

An update for ipa is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Red Hat Identity Management (IdM) is a centralized authentication, identity
management, and authorization solution for both traditional and cloud-based enterprise environments.

Security Fix(es):

* freeipa: specially crafted HTTP requests potentially lead to denial of
service (CVE-2024-1481)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise
Linux 9.4 Release Notes linked from the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2024-1481: Improper Input Validation (CWE-20)
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung