Fedora 38: FEDORA-2024-bbfef02415 DoS Risk for FreeIPA Security
fedora
March 13, 2024
Security release: CVE-2024-1481 Resolves: rhbz#2265129
Summary
IPA is an integrated solution to provide centrally managed Identity (users,
hosts, services), Authentication (SSO, 2FA), and Authorization
(host access control, SELinux user roles, services). The solution provides
features for further integration with Linux based clients (SUDO, automount)
and integration with Active Directory based infrastructures (Trusts).
Update Information:
Security release: CVE-2024-1481 Resolves: rhbz#2265129
Topics Covered
Change Log
* Wed Feb 21 2024 Rob Crittenden
References
[ 1 ] Bug #2265129 - TRIAGE CVE-2024-1481 freeipa: specially crafted HTTP requests potentially lead to DoS or data exposure [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2265129
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-bbfef02415' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: freeipa
Product: Fedora 38
Version: 4.10.3
Release: 2.fc38
Summary: The Identity, Policy and Audit system
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!