ELSA-2017-0001

ELSA-2017-0001 - ipa security update

Type:SECURITY
Severity:MODERATE
Release Date:2017-01-03

Description


[4.4.0-14.0.1.el7_3.1.1]
- Blank out header-logo.png product-name.png
Replace login-screen-logo.png [20362818]

[4.4.0-14.1.1]
- Resolves: #1370493 CVE-2016-7030 ipa: DoS attack against kerberized services
by abusing password policy
- ipa-kdb: search for password policies globally
- Renamed patches 1011 and 1012 to 0146 and 0145, as they were merged upstream

[4.4.0-14.1]
- Resolves: #1370493 CVE-2016-7030 ipa: DoS attack against kerberized services
by abusing password policy
- password policy: Add explicit default password policy for hosts and
services
- Resolves: #1395311 CVE-2016-9575 ipa: Insufficient permission check in
certprofile-mod
- certprofile-mod: correctly authorise config update


Related CVEs


CVE-2016-7030
CVE-2016-9575

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) ipa-4.4.0-14.0.1.el7_3.1.1.src.rpm9e803006bc32db0cbf09da569fc06965ELBA-2021-1395
ipa-admintools-4.4.0-14.0.1.el7_3.1.1.noarch.rpmb5fc445d444838107a4f859d0ddf2833ELBA-2017-0925
ipa-client-4.4.0-14.0.1.el7_3.1.1.x86_64.rpme01f5827297af6209942754ec765ae4fELBA-2021-1395
ipa-client-common-4.4.0-14.0.1.el7_3.1.1.noarch.rpm58f800c5bf90340a4b4979184ea999e2ELBA-2021-1395
ipa-common-4.4.0-14.0.1.el7_3.1.1.noarch.rpm349f542ab6ed7ac9702aa193b71b08f3ELBA-2021-1395
ipa-python-compat-4.4.0-14.0.1.el7_3.1.1.noarch.rpme489bb615894fa10fb6ce3168b94093eELBA-2021-1395
ipa-server-4.4.0-14.0.1.el7_3.1.1.x86_64.rpm795eb408f0158d3636276ad42a932234ELBA-2021-1395
ipa-server-common-4.4.0-14.0.1.el7_3.1.1.noarch.rpm6807ac62449956a0d78de324e10cba07ELBA-2021-1395
ipa-server-dns-4.4.0-14.0.1.el7_3.1.1.noarch.rpmf51f7a0d115bfa3bf3227e528fb92edbELBA-2021-1395
ipa-server-trust-ad-4.4.0-14.0.1.el7_3.1.1.x86_64.rpm08fc4699f0e9aac3119bbe45647b806bELBA-2021-1395
python2-ipaclient-4.4.0-14.0.1.el7_3.1.1.noarch.rpm71437202e2c05737364aec510b946c79ELBA-2021-1395
python2-ipalib-4.4.0-14.0.1.el7_3.1.1.noarch.rpma98eea0d27b1d41a941a0e8d296ff904ELBA-2021-1395
python2-ipaserver-4.4.0-14.0.1.el7_3.1.1.noarch.rpmaa37a0316adeea7061e1f9201088a877ELBA-2021-1395



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete