Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 4 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraupdate information

Fedora 40 freeipa 2025-6baf694c75 critical advisory for CVE-2024-11029

CVE-2024-11029 Release note: https://www.freeipa.org/release-notes/4-12-3.html. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-6baf694c75 2025-01-27 01:55:15.215313+00:00 -------------------------------------------------------------------------------- Name : freeipa Product : Fedora 40 Version : 4.12.2 Release : 3.fc40 URL : http://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). -------------------------------------------------------------------------------- Update Information: CVE-2024-11029 Release note: https://www.freeipa.org/release-notes/4-12-3.html -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 15 2025 Alexander Bokovoy - 4.12.2-3 - CVE-2024-11029 - Release notes: https://www.freeipa.org/release-notes/4-12-3.html -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-6baf694c75' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . CentOS's cPanel faces crucial patches targeting vulnerabilities alongside comprehensive advice for its users.. Fedora freeipa updates, security issues, identity management patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 27, 2025 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 41: FEDORA-2025-b21777d1b5 critical: freeipa security advisory

CVE-2024-11029 Release note: https://www.freeipa.org/release-notes/4-12-3.html. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-b21777d1b5 2025-01-27 01:38:38.335848+00:00 -------------------------------------------------------------------------------- Name : freeipa Product : Fedora 41 Version : 4.12.2 Release : 7.fc41 URL : http://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). -------------------------------------------------------------------------------- Update Information: CVE-2024-11029 Release note: https://www.freeipa.org/release-notes/4-12-3.html -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 15 2025 Alexander Bokovoy - 4.12.2-7 - CVE-2024-11029 - Release notes: https://www.freeipa.org/release-notes/4-12-3.html -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-b21777d1b5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41 has issued a security advisory for FreeIPA regarding CVE-2024-11029, highlighting vulnerabilities in authentication mechanisms requiring immediate user action. Fedora 41, freeipa, security advisory, identity management. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 27, 2025 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 39 FEDORA-2024-1d1b485611 Critical: FreeIPA Authentication Issues

Fix CVE-2024-2698 and CVE-2024-3183. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-1d1b485611 2024-06-29 01:41:49.505912 -------------------------------------------------------------------------------- Name : freeipa Product : Fedora 39 Version : 4.12.1 Release : 1.fc39 URL : http://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). -------------------------------------------------------------------------------- Update Information: Fix CVE-2024-2698 and CVE-2024-3183 -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 11 2024 Julien Rische - 4.12.1-1 - Upstream release 4.12.1 - Release notes: https://www.freeipa.org/release-notes/4-12-1.html - Security release: CVE-2024-2698 CVE-2024-3183 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2291164 - CVE-2024-3183 freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2291164 [ 2 ] Bug #2291165 - CVE-2024-2698 freeipa: delegation rules allow a proxy service to impersonate any user to access another target service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2291165 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-1d1b485611' at the command line. For moreinformation, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Recent patches for Fedora 39's freeipa target the vulnerabilities CVE-2024-2698 and CVE-2024-3183 and are now released.. FreeIPA Security Update, Fedora Updates, Identity Management. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 29, 2024 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issuefedora

Fedora 40: FEDORA-2024-2a466c6514 Critical: FreeIPA User Access Breach

Fix CVE-2024-2698 and CVE-2024-3183. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-2a466c6514 2024-06-27 02:02:42.637986 -------------------------------------------------------------------------------- Name : freeipa Product : Fedora 40 Version : 4.12.1 Release : 1.fc40 URL : http://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). -------------------------------------------------------------------------------- Update Information: Fix CVE-2024-2698 and CVE-2024-3183 -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 11 2024 Julien Rische - 4.12.1-1 - Upstream release 4.12.1 - Release notes: https://www.freeipa.org/release-notes/4-12-1.html - Security release: CVE-2024-2698 CVE-2024-3183 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2291164 - CVE-2024-3183 freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2291164 [ 2 ] Bug #2291165 - CVE-2024-2698 freeipa: delegation rules allow a proxy service to impersonate any user to access another target service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2291165 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-2a466c6514' at the command line. For moreinformation, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Stay protected with Fedora 40's freeipa security patches addressing issues CVE-2024-2698 and CVE-2024-3183. Ensure your system is secure!. Fedora Security Advisory, FreeIPA Update, Identity Management, Critical Security Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 27, 2024 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorasecurity release

Fedora 38: FEDORA-2024-bbfef02415 DoS Risk for FreeIPA Security

Security release: CVE-2024-1481 Resolves: rhbz#2265129. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-bbfef02415 2024-03-13 01:47:46.880598 -------------------------------------------------------------------------------- Name : freeipa Product : Fedora 38 Version : 4.10.3 Release : 2.fc38 URL : https://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). -------------------------------------------------------------------------------- Update Information: Security release: CVE-2024-1481 Resolves: rhbz#2265129 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 21 2024 Rob Crittenden - 4.10.3-2 - Security release: CVE-2024-1481 - Resolves: rhbz#2265129 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2265129 - TRIAGE CVE-2024-1481 freeipa: specially crafted HTTP requests potentially lead to DoS or data exposure [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2265129 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-bbfef02415' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The recent update for FreeIPA in Fedora 38 addresses CVE-2024-1481, enhancing both security and operational stability.. Fedora 38, FreeIPA Security Release, CVE-2024-1481. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 13, 2024 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 38: 2024-403145c4fb Critical: FreeIPA CSRF Issue

Upstream security release for CVE-2023-5455. Release notes: https://www.freeipa.org/release-notes/4-10-3.html. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-403145c4fb 2024-01-26 00:42:11.401778 -------------------------------------------------------------------------------- Name : freeipa Product : Fedora 38 Version : 4.10.3 Release : 1.fc38 URL : https://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). -------------------------------------------------------------------------------- Update Information: Upstream security release for CVE-2023-5455. Release notes: https://www.freeipa.org/release-notes/4-10-3.html -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 10 2024 Alexander Bokovoy - 4.10.3-1 - Security release: CVE-2023-5455 - Resolves: rhbz#2257646 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2257646 - CVE-2023-5455 freeipa: ipa: Invalid CSRF protection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2257646 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-403145c4fb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by theFedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Latest update from upstream security for FreeIPA addresses CVE-2023-5455, essential for identity management and access control.. Fedora Updates, FreeIPA Security, Identity Management, CSRF Protection. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 26, 2024 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraupdate

Fedora 35: 2021-12af2614da Critical Samba Security Issue

Update to latest samba release (addressing various CVEs) and rebuild freeipa. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-12af2614da 2021-11-19 01:13:49.587403 --------------------------------------------------------------------------------Name : freeipa Product : Fedora 35 Version : 4.9.7 Release : 4.fc35 URL : https://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). --------------------------------------------------------------------------------Update Information: Update to latest samba release (addressing various CVEs) and rebuild freeipa --------------------------------------------------------------------------------ChangeLog: * Thu Nov 11 2021 Alexander Bokovoy - 4.9.7-4 - Hardening for CVE-2020-25717 part 2 - Handle S4U for users from trusted domains * Wed Nov 10 2021 Alexander Bokovoy - 4.9.7-3 - Hardening for CVE-2020-25717 - Generate SIDs for IPA users and groups by default - Verify MS-PAC consistency when it is generated or validated - Rebuild against samba-4.15.2 - Resolves: rhbz#2021720 --------------------------------------------------------------------------------References: [ 1 ] Bug #2019660 - CVE-2016-2124 samba: SMB1 client connections can be downgraded to plaintext authentication https://bugzilla.redhat.com/show_bug.cgi?id=2019660 [ 2 ] Bug #2019666 - CVE-2021-23192 samba: Subsequent DCE/RPC fragment injection vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=2019666 [ 3 ] Bug #2019672 - CVE-2020-25717 samba: A user in an AD Domaincould become root on domain members https://bugzilla.redhat.com/show_bug.cgi?id=2019672 [ 4 ] Bug #2019726 - CVE-2020-25718 samba: Samba AD DC did not correctly sandbox Kerberos tickets issues by an RODC https://bugzilla.redhat.com/show_bug.cgi?id=2019726 [ 5 ] Bug #2019732 - CVE-2020-25719 samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets https://bugzilla.redhat.com/show_bug.cgi?id=2019732 [ 6 ] Bug #2019764 - CVE-2020-25722 samba: Samba AD DC did not do sufficient access and conformance checking of data stored https://bugzilla.redhat.com/show_bug.cgi?id=2019764 [ 7 ] Bug #2021726 - CVE-2021-3738 samba: Use after free in Samba AD DC RPC server https://bugzilla.redhat.com/show_bug.cgi?id=2021726 [ 8 ] Bug #2021728 - CVE-2020-25721 samba: Kerberos acceptors need easy access to stableAD identifiers (eg objectSid) https://bugzilla.redhat.com/show_bug.cgi?id=2021728 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-12af2614da' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply tospam on the list, report it: https://pagure.io/fedora-infrastructure . An upgrade to the most current Samba version rectifies multiple security vulnerabilities and recompiles FreeIPA specifically for the Fedora 35 platform.. FreeIPA Update,Fedora 35,Samba Security Fix,Identity Management. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 18, 2021 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 32: 2021 Notice - Security Update for Dogtag PKI and 389-ds

- 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-dc1a4934a5 2021-03-04 19:56:07.300277 --------------------------------------------------------------------------------Name : dogtag-pki Product : Fedora 32 Version : 10.10.5 Release : 1.fc32 URL : https://www.dogtagpki.org Summary : Dogtag PKI Package Description : Dogtag PKI is an enterprise software system designed to manage enterprise Public Key Infrastructure deployments. PKI consists of the following components: * Automatic Certificate Management Environment (ACME) Responder * Certificate Authority (CA) * Key Recovery Authority (KRA) * Online Certificate Status Protocol (OCSP) Manager * Token Key Service (TKS) * Token Processing Service (TPS) --------------------------------------------------------------------------------Update Information: - 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions --------------------------------------------------------------------------------ChangeLog: * Thu Feb 25 2021 Dogtag PKI Team - 10.10.5-1 - Rebase to upstream stable v10.10.5 release --------------------------------------------------------------------------------References: [ 1 ] Bug #1908653 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1908653 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-dc1a4934a5' atthe command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Fedora 34's recent upgrade addresses LDAP BIND vulnerabilities and enhances Dogtag PKI interoperability for its users.. Dogtag PKI Update,Fedora Security Patch,LDAP Binding Fix,Information Disclosure Risk. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 04, 2021 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here