Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 26 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity updateprivilege escalation

Solaris OS 12 ZFSB-2030-53145 File System Enhancement CVE-2025-10367

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm","ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm","ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm","python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux 8 handles important updates for IdM to fix privilege escalation issues affecting identity management tools.. Rocky Linux security update, IdM privilege escalation, identity management updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryprivilege escalationimportant

Ubuntu Server 22.04 RLSA-2025-18560 sec Minor Resource Spike Alert

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm","ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm","ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm","python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Stay informed about critical identity management updates and the importance of timely security patches on Rocky Linux.. idm Security Updates, Rocky Linux Advisories, Important Security Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
Banner 3 1028x280 1708121785 1771599793
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity issueprivilege escalation

Rocky Linux 9.1 IdM Security Update Alert RLSA-2025-20412 CVE-2025-8580

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm","ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm","ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm","python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important idm security update for Rocky Linux addressing privilege escalation concerns. Stay secure with the latest patches.. IdM Updates,RLSA-2025:17129,Rocky Linux Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity updateprivilege escalation

Critical Security Flaw Found in Ubuntu 22 LTS - Update Now to Protect

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm","ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm","ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm","python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux users should be aware of the important idm security update, addressing significant risks in identity management applications.. idm security update, rocky linux advisory, privilege escalation, identity management. . Severity: Important.LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
Banner 3 1028x280 1708121785 1771599793
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryprivilege escalationimportant

Rocky Linux 8 RLSA-2025-17346 idm User Management Enhancement Alert

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm","bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm","python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important idm security updates for Rocky Linux address privilege escalation risks. Get the latest fixes now..idm security updates, Rocky Linux vulnerabilities, FreeIPA privilege escalation, 2025:17129 advisory, Linux security patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity fiximportant

Rocky Linux RLSA-2025-17133 datadir Major Security Update for User Access

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm","bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm","opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm","slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Update for Rocky Linux addresses critical security issues affecting identity management and authentication solutions.. Rocky Linux update, identity management security, authentication risk. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
Banner 3 1028x280 1708121785 1771599793
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity issueprivilege escalation

Rocky Linux 8 Security Update RLSA-2025-17230 Critical IDM Threat Alert

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm","bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm","ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm","python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux 8 faces significant security risks due to privilege escalation vulnerabilities in the idm module updates.. Rocky Linux 8, idm security update, privilege escalation, identity management, security patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryprivilege escalationsecurity fix

Rocky Linux 8 RLSA-2025-12137 idm Serious Vulnerability Elevation Risk

Important: idm:DL1 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:17129", "synopsis": "Important: idm:DL1 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for bind-dyndb-ldap, module.python-yubico, custodia, module.softhsm, module.python-jwcrypto, module.ipa-healthcheck, module.slapi-nis, ipa-healthcheck, opendnssec, module.bind-dyndb-ldap, pyusb, python-jwcrypto, module.python-qrcode, module.ipa, module.opendnssec, module.pyusb, python-qrcode, python-kdcproxy, softhsm, python-yubico, ipa, module.custodia, module.python-kdcproxy, slapi-nis.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA (CVE-2025-7493)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2389448", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2389448", "description": ""}], "cves": [{"name": "CVE-2025-7493", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-7493", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "cvss3BaseScore": "9.1", "cwe": "CWE-1220"}], "references": [], "publishedAt": "2026-03-18T06:01:13.733535Z", "rpms": {"Rocky Linux 8": {"nvras": ["bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.src.rpm","bind-dyndb-ldap-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debuginfo-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "bind-dyndb-ldap-debugsource-0:11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2066+d74ade98.src.rpm", "ipa-0:4.9.13-20.module+el8.10.0+2067+377bdd64.src.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-client-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-client-epn-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-client-samba-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm","ipa-common-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debuginfo-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.aarch64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-debugsource-0:4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2053+a0a9dc19.src.rpm", "ipa-healthcheck-0:0.12-6.module+el8.10.0+2054+aa003774.src.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2054+aa003774.noarch.rpm", "ipa-healthcheck-core-0:0.12-6.module+el8.10.0+2053+a0a9dc19.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-python-compat-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-selinux-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-common-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-dns-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.aarch64.rpm", "ipa-server-trust-ad-debuginfo-0:4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm","opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.src.rpm", "opendnssec-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debuginfo-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.aarch64.rpm", "opendnssec-debugsource-0:2.1.7-2.module+el8.10.0+1960+1ed527b3.x86_64.rpm", "python3-custodia-0:0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaclient-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm", "python3-ipalib-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipaserver-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-ipatests-0:4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.noarch.rpm", "python3-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1915+3c70f7d9.noarch.rpm", "python3-qrcode-core-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.noarch.rpm", "python3-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.noarch.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1819+0aeba2f1.src.rpm", "python-jwcrypto-0:0.5.0-2.module+el8.10.0+1818+2dfda7a6.src.rpm","python-kdcproxy-0:0.4-5.module+el8.10.0+2094+d7886766.2.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-kdcproxy-0:0.4-5.module+el8.10.0+1915+3c70f7d9.1.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1916+6bb8cf6b.src.rpm", "python-qrcode-0:5.3-1.module+el8.10.0+1915+3c70f7d9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "python-yubico-0:1.3.2-9.1.module+el8.9.0+1372+09f67869.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9.src.rpm", "pyusb-0:1.0.0-9.1.module+el8.9.0+1372+09f67869.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.src.rpm", "slapi-nis-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debuginfo-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.aarch64.rpm", "slapi-nis-debugsource-0:0.60.0-4.module+el8.9.0+1573+39ab85f4.x86_64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.src.rpm", "softhsm-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debuginfo-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-debugsource-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.aarch64.rpm", "softhsm-devel-0:2.6.0-5.module+el8.9.0+1371+ffa84eb9.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. An important security advisory for Rocky Linux regarding key identity management updates and potential risks of privilege escalation.. Rocky Linux Security Fixes, Identity Management Updates, Privilege Escalation Mitigation. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 18, 2026 Important Rocky Linux
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here