ELBA-2015-2362
- ULN >
- Oracle Linux Errata repository >
- ELBA-2015-2362
ELBA-2015-2362 - ipa bug fix and enhancement update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2015-11-24 |
Description
[4.2.0-15.0.1]
- Drop redhat-access-plugin-ipa requires for OL7
Blank out header-logo.png product-name.png
Replace login-screen-logo.png [20362818]
[4.2.0-15]
- Resolves: #1252556 Missing CLI param and ACL for vault service operations
- vault: fix private service vault creation
[4.2.0-14]
- Resolves: #1262996 ipa vault internal error on replica without KRA
- upgrade: make sure ldap2 is connected in export_kra_agent_pem
- Resolves: #1270608 IPA upgrade fails for server with CA cert signed by
external CA
- schema: do not derive ipaVaultPublicKey from ipaPublicKey
[4.2.0-13]
- Resolves: #1217009 OTP sync in UI does not work for TOTP tokens
- Fix an integer underflow bug in libotp
- Resolves: #1262996 ipa vault internal error on replica without KRA
- install: always export KRA agent PEM file
- vault: select a server with KRA for vault operations
- Resolves: #1269777 IPA restore overwrites /etc/passwd and /etc/group files
- do not overwrite files with local users/groups when restoring authconfig
- Renamed patch 1011 to 0138, as it was merged upstream
[4.2.0-12]
- Resolves: #1204205 [RFE] ID Views: Automated migration tool from Winsync to
Trusts
- winsync-migrate: Convert entity names to posix friendly strings
- winsync-migrate: Properly handle collisions in the names of external groups
- Resolves: #1261074 Adjust Firefox configuration to new extension signing
policy
- webui: use manual Firefox configuration for Firefox >= 40
- Resolves: #1263337 IPA Restore failed with installed KRA
- ipa-backup: Add mechanism to store empty directory structure
- Resolves: #1264793 CVE-2015-5284 ipa: ipa-kra-install includes certificate
and private key in world readable file [rhel-7.2]
- install: fix KRA agent PEM file permissions
- Resolves: #1265086 Mark IdM API Browser as experimental
- WebUI: add API browser is experimental warning
- Resolves: #1265277 Fix kdcproxy user creation
- install: create kdcproxy user during server install
- platform: add option to create home directory when adding user
- install: fix kdcproxy user home directory
- Resolves: #1265559 GSS failure after ipa-restore
- destroy httpd ccache after stopping the service
[4.2.0-11]
- Resolves: #1258965 ipa vault: set owner of vault container
- baseldap: make subtree deletion optional in LDAPDelete
- vault: add vault container commands
- vault: set owner to current user on container creation
- vault: update access control
- vault: add permissions and administrator privilege
- install: support KRA update
- Resolves: #1261586 ipa config-mod addattr fails for ipauserobjectclasses
- config: allow user/host attributes with tagging options
- Resolves: #1262315 Unable to establish winsync replication
- winsync: Add inetUser objectclass to the passsync sysaccount
[4.2.0-10]
- Resolves: #1260663 crash of ipa-dnskeysync-replica component during
ipa-restore
- IPA Restore: allows to specify files that should be removed
- Resolves: #1261806 Installing ipa-server package breaks httpd
- Handle timeout error in ipa-httpd-kdcproxy
- Resolves: #1262322 Failed to backup CS.cfg message in upgrade.
- Server Upgrade: backup CS.cfg when dogtag is turned off
[4.2.0-9]
- Resolves: #1257074 The KRA agent cert is stored in a PEM file that is not
tracked
- cert renewal: Include KRA users in Dogtag LDAP update
- cert renewal: Automatically update KRA agent PEM file
- Resolves: #1257163 renaming certificatte profile with --rename option leads
to integrity issues
- certprofile: remove 'rename' option
- Resolves: #1257968 kinit stop working after ipa-restore
- Backup: back up the hosts file
- Resolves: #1258926 Remove 'DNSSEC is experimental' warnings
- DNSSEC: remove 'DNSSEC is experimental' warnings
- Resolves: #1258929 Uninstallation of IPA leaves extra entry in /etc/hosts
- Installer: do not modify /etc/hosts before user agreement
- Resolves: #1258944 DNSSEC daemons may deadlock when processing more than 1
zone
- DNSSEC: backup and restore opendnssec zone list file
- DNSSEC: remove ccache and keytab of ipa-ods-exporter
- DNSSEC: prevent ipa-ods-exporter from looping after service auto-restart
- DNSSEC: Fix deadlock in ipa-ods-exporter <-> ods-enforcerd interaction
- DNSSEC: Fix HSM synchronization in ipa-dnskeysyncd when running on DNSSEC
key master
- DNSSEC: Fix key metadata export
- DNSSEC: Wrap master key using RSA OAEP instead of old PKCS v1.5.
- Resolves: #1258964 revert to use ldapi to add kra agent in KRA install
- Using LDAPI to setup CA and KRA agents.
- Resolves: #1259848 server closes connection and refuses commands after
deleting user that is still logged in
- ldap: Make ldap2 connection management thread-safe again
- Resolves: #1259996 AttributeError: 'NameSpace' object has no attribute
'ra_certprofile' while ipa-ca-install
- load RA backend plugins during standalone CA install on CA-less IPA master
[4.2.0-8]
- Resolves: #1254689 Storing big file as a secret in vault raises traceback
- vault: Limit size of data stored in vault
- Resolves: #1255880 ipactl status should distinguish between different
pki-tomcat services
- ipactl: Do not start/stop/restart single service multiple times
[4.2.0-7]
- Resolves: #1256840 [webui] majority of required fields is no longer marked as
required
- fix missing information in object metadata
- Resolves: #1256842 [webui] no option to choose trust type when creating a
trust
- webui: add option to establish bidirectional trust
- Resolves: #1256853 Clear text passwords in KRA install log
- Removed clear text passwords from KRA install log.
- Resolves: #1257072 The 'Standard Vault' MUST not be the default and must be
discouraged
- vault: change default vault type to symmetric
- Resolves: #1257163 renaming certificatte profile with --rename option leads
to integrity issues
- certprofile: prevent rename (modrdn)
[4.2.0-6]
- Resolves: #1249226 IPA dnssec-validation not working for AD dnsforwardzone
- DNSSEC: fix forward zone forwarders checks
- Resolves: #1250190 idrange is not added for sub domain
- trusts: format Kerberos principal properly when fetching trust topology
- Resolves: #1252334 User life cycle: missing ability to provision a stage user
from a preserved user
- Add user-stage command
- Resolves: #1252863 After applying RHBA-2015-1554 errata, IPA service fails to
start.
- spec file: Add Requires(post) on selinux-policy
- Resolves: #1254304 Changing vault encryption attributes
- Change internal rsa_(public|private)_key variable names
- Added support for changing vault encryption.
- Resolves: #1256715 Executing user-del --preserve twice removes the user
pernamently
- improve the usability of command
[4.2.0-5]
- Resolves: #1199530 [RFE] Provide user lifecycle managment capabilities
- user-undel: Fix error messages.
- Resolves: #1200694 [RFE] Support for multiple cert profiles
- Prohibit deletion of predefined profiles
- Resolves: #1232819 testing ipa-restore on fresh system install fails
- Backup/resore authentication control configuration
- Resolves: #1243331 pkispawn fails when migrating to 4.2 server from 3.0
server
- Require Dogtag PKI >= 10.2.6
- Resolves: #1245225 Asymmetric vault drops traceback when the key is not
proper
- Asymmetric vault: validate public key in client
- Resolves: #1248399 Missing DNSSEC related files in backup
- fix typo in BasePathNamespace member pointing to ods exporter config
- ipa-backup: archive DNSSEC zone file and kasp.db
- Resolves: #1248405 PassSync should be disabled after ipa-winsync-migrate is
finished
- winsync-migrate: Add warning about passsync
- winsync-migrate: Expand the man page
- Resolves: #1248524 User can't find any hosts using 'ipa host-find abcmv0001'
- adjust search so that it works for non-admin users
- Resolves: #1250093 ipa certprofile-import accepts invalid config
- Require Dogtag PKI >= 10.2.6
- Resolves: #1250107 IPA framework should not allow modifying trust on AD trust
agents
- trusts: Detect missing Samba instance
- Resolves: #1250111 User lifecycle - preserved users can be assigned
membership
- ULC: Prevent preserved users from being assigned membership
- Resolves: #1250145 Add permission for user to bypass caacl enforcement
- Add permission for bypassing CA ACL enforcement
- Resolves: #1250190 idrange is not added for sub domain
- idranges: raise an error when local IPA ID range is being modified
- trusts: harden trust-fetch-domains oddjobd-based script
- Resolves: #1250928 Man page for ipa-server-install is out of sync
- install: Fix server and replica install options
- Resolves: #1251225 IPA default CAACL does not allow cert-request for services
after upgrade
- Fix default CA ACL added during upgrade
- Resolves: #1251561 ipa vault-add Unknown option: ipavaultpublickey
- validate mutually exclusive options in vault-add
- Resolves: #1251579 ipa vault-add --user should set container owner equal to
user on first run
- Fixed vault container ownership.
- Resolves: #1252517 cert-request rejects request with correct
krb5PrincipalName SAN
- Fix KRB5PrincipalName / UPN SAN comparison
- Resolves: #1252555 ipa vault-find doesn't work for services
- vault: Add container information to vault command results
- Add flag to list all service and user vaults
- Resolves: #1252556 Missing CLI param and ACL for vault service operations
- Added CLI param and ACL for vault service operations.
- Resolves: #1252557 certprofile: improve profile format documentation
- certprofile-import: improve profile format documentation
- certprofile: add profile format explanation
- Resolves: #1253443 ipa vault-add creates vault with invalid type
- vault: validate vault type
- Resolves: #1253480 ipa vault-add-owner does not fail when adding an existing
owner
- baseldap: Allow overriding member param label in LDAPModMember
- vault: Fix param labels in output of vault owner commands
- Resolves: #1253511 ipa vault-find does not use criteria
- vault: Fix vault-find with criteria
- Resolves: #1254038 ipa-replica-install pk12util error returns exit status 10
- install: Fix replica install with custom certificates
- Resolves: #1254262 ipa-dnskeysync-replica crash cannot contact kdc
- improve the handling of krb5-related errors in dnssec daemons
- Resolves: #1254412 when dirsrv is off ,upgrade from 7.1 to 7.2 fails with
starting CA and named-pkcs11.service
- Server Upgrade: Start DS before CA is started.
- Resolves: #1254637 Add ACI and permission for managing user userCertificate
attribute
- add permission: System: Manage User Certificates
- Resolves: #1254641 Remove CSR allowed-extensions restriction
- cert-request: remove allowed extensions check
- Resolves: #1254693 vault --service does not normalize service principal
- vault: normalize service principal in service vault operations
- Resolves: #1254785 ipa-client-install does not properly handle dual stacked
hosts
- client: Add support for multiple IP addresses during installation.
- Add dependency to SSSD 1.13.1
- client: Add description of --ip-address and --all-ip-addresses to man page
[4.2.0-4]
- Resolves: #1072383 [RFE] Provide ability to map CAC identity certificates to
users in IdM
- store certificates issued for user entries as
- user-show: add --out option to save certificates to file
- Resolves: #1145748 [RFE] IPA running with One Way Trust
- Fix upgrade of sidgen and extdom plugins
- Resolves: #1195339 ipa-client-install changes the label on various files
which causes SELinux denials
- Use 'mv -Z' in specfile to restore SELinux context
- Resolves: #1198796 Text in UI should describe differing LDAP vs Krb behavior
for combinations of 'User authentication types'
- webui: add LDAP vs Kerberos behavior description to user auth
- Resolves: #1199530 [RFE] Provide user lifecycle managment capabilities
- ULC: Fix stageused-add --from-delete command
- Resolves: #1200694 [RFE] Support for multiple cert profiles
- certprofile-import: do not require profileId in profile data
- Give more info on virtual command access denial
- Allow SAN extension for cert-request self-service
- Add profile for DNP3 / IEC 62351-8 certificates
- Work around python-nss bug on unrecognised OIDs
- Resolves: #1204501 [RFE] Add Password Vault (KRA) functionality
- Validate vault's file parameters
- Fixed missing KRA agent cert on replica.
- Resolves: #1225866 display browser config options that apply to the browser.
- webui: add Kerberos configuration instructions for Chrome
- Remove ico files from Makefile
- Resolves: #1246342 Unapply idview raises internal error
- idviews: Check for the Default Trust View only if applying the view
- Resolves: #1248102 [webui] regression - incorrect/no failed auth messages
- webui: fix regressions failed auth messages
- Resolves: #1248396 Internal error in DomainValidator.__search_in_dc
- dcerpc: Fix UnboundLocalError for ccache_name
- Resolves: #1249455 ipa trust-add failed CIFS server configuration does not
allow access to \pipe\lsarpc
- Fix selector of protocol for LSA RPC binding string
- dcerpc: Simplify generation of LSA-RPC binding strings
- Resolves: #1250192 Error in ipa trust-fecth-domains
- Fix incorrect type comparison in trust-fetch-domains
- Resolves: #1251553 Winsync setup fails with unexpected error
- replication: Fix incorrect exception invocation
- Resolves: #1251854 ipa aci plugin is not parsing aci's correctly.
- ACI plugin: correctly parse bind rules enclosed in
- Resolves: #1252414 Trust agent install does not detect available replicas to
add to master
- adtrust-install: Correctly determine 4.2 FreeIPA servers
[4.2.0-3]
- Resolves: #1170770 [AD TRUST]IPA should detect inconsistent realm domains
that conflicts with AD DC
- trusts: Check for AD root domain among our trusted domains
- Resolves: #1195339 ipa-client-install changes the label on various files
which causes SELinux denials
- sysrestore: copy files instead of moving them to avoind SELinux issues
- Resolves: #1196656 [ipa-client][rhel71] enable debugging for spawned
commands / ntpd -qgc hangs
- enable debugging of ntpd during client installation
- Resolves: #1205264 Migration UI Does Not Work When Anonymous Bind is Disabled
- migration: Use api.env variables.
- Resolves: #1212719 abort-clean-ruv subcommand should allow
replica-certifyall: no
- Allow value 'no' for replica-certify-all attr in abort-clean-ruv subcommand
- Resolves: #1216935 ipa trust-add shows ipa: ERROR: an internal error has
occurred
- dcerpc: Expand explanation for WERR_ACCESS_DENIED
- dcerpc: Fix UnboundLocalError for ccache_name
- Resolves: #1222778 idoverride group-del can delete user and user-del can
delete group
- dcerpc: Add get_trusted_domain_object_type method
- idviews: Restrict anchor to name and name to anchor conversions
- idviews: Enforce objectclass check in idoverride*-del
- Resolves: #1234919 Be able to request certificates without certmonger service
running
- cermonger: Use private unix socket when DBus SystemBus is not available.
- ipa-client-install: Do not (re)start certmonger and DBus daemons.
- Resolves: #1240939 Please add dependency on bind-pkcs11
- Create server-dns sub-package.
- ipaplatform: Add constants submodule
- DNS: check if DNS package is installed
- Resolves: #1242914 Bump minimal selinux-policy and add booleans to allow
calling out oddjobd-activated services
- selinux: enable httpd_run_ipa to allow communicating with oddjobd services
- Resolves: #1243261 non-admin users cannot search hbac rules
- fix hbac rule search for non-admin users
- fix selinuxusermap search for non-admin users
- Resolves: #1243652 Client has missing dependency on memcache
- do not import memcache on client
- Resolves: #1243835 [webui] user change password dialog does not work
- webui: fix user reset password dialog
- Resolves: #1244802 spec: selinux denial during kdcproxy user creation
- Fix selinux denial during kdcproxy user creation
- Resolves: #1246132 trust-fetch-domains: Do not chown keytab to the sssd user
- oddjob: avoid chown keytab to sssd if sssd user does not exist
- Resolves: #1246136 Adding a privilege to a permission avoids validation
- Validate adding privilege to a permission
- Resolves: #1246141 DNS Administrators cannot search in zones
- DNS: Consolidate DNS RR types in API and schema
- Resolves: #1246143 User plugin - user-find doesn't work properly with manager
option
- fix broken search for users by their manager
[4.2.0-2]
- Resolves: #1131907 [ipa-client-install] cannot write certificate file
'/etc/ipa/ca.crt.new': must be string or buffer, not None
- Resolves: #1195775 unsaved changes dialog internally inconsistent
- Resolves: #1199530 [RFE] Provide user lifecycle managment capabilities
- Stageusedr-activate: show username instead of DN
- Resolves: #1200694 [RFE] Support for multiple cert profiles
- Prevent to rename certprofile profile id
- Resolves: #1222047 IPA to AD Trust: IPA ERROR 4016: Remote Retrieve Error
- Resolves: #1224769 copy-schema-to-ca.py does not overwrites schema files
- copy-schema-to-ca: allow to overwrite schema files
- Resolves: #1241941 kdc component installation of IPA failed
- spec file: Update minimum required version of krb5
- Resolves: #1242036 Replica install fails to update DNS records
- Fix DNS records installation for replicas
- Resolves: #1242884 Upgrade to 4.2.0 fails when enabling kdc proxy
- Start dirsrv for kdcproxy upgrade
[4.2.0-1]
- Resolves: #846033 [RFE] Documentation for JSONRPC IPA API
- Resolves: #989091 Ability to manage IdM/IPA directly from a standard LDAP
client
- Resolves: #1072383 [RFE] Provide ability to map CAC identity certificates to
users in IdM
- Resolves: #1115294 [RFE] Add support for DNSSEC
- Resolves: #1145748 [RFE] IPA running with One Way Trust
- Resolves: #1199520 [RFE] Introduce single upgrade tool - ipa-server-upgrade
- Resolves: #1199530 [RFE] Provide user lifecycle managment capabilities
- Resolves: #1200694 [RFE] Support for multiple cert profiles
- Resolves: #1200728 [RFE] Replicate PKI Profile information
- Resolves: #1200735 [RFE] Allow issuing certificates for user accounts
- Resolves: #1204054 SSSD database is not cleared between installs and
uninstalls of ipa
- Resolves: #1204205 [RFE] ID Views: Automated migration tool from Winsync to
Trusts
- Resolves: #1204501 [RFE] Add Password Vault (KRA) functionality
- Resolves: #1204504 [RFE] Add access control so hosts can create their own
services
- Resolves: #1206534 [RFE] Offer Kerberos over HTTP (kdcproxy) by default
- Resolves: #1206613 [RFE] Configure IPA to be a trust agent by default
- Resolves: #1209476 package ipa-client does not require package dbus-python
- Resolves: #1211589 [RFE] Add option to skip the verify_client_version
- Resolves: #1211608 [RFE] Generic support for unknown DNS RR types (RFC 3597)
- Resolves: #1215735 ipa-replica-prepare automatically adds a DNS zone
- Resolves: #1217010 OTP Manager field is not exposed in the UI
- Resolves: #1222475 krb5kdc : segfault at 0 ip 00007fa9f64d82bb sp
00007fffd68b2340 error 6 in libc-2.17.so
- Related: #1204809 Rebase ipa to 4.2
- Update to upstream 4.2.0
- Move /etc/ipa/kdcproxy to the server subpackage
[4.2.0-0.2.alpha1]
- Resolves: #1228671 pkispawn fails in ipa-ca-install and ipa-kra-install
- Related: #1204809 Rebase ipa to 4.2
- Fix minimum version of slapi-nis
- Require python-sss and python-sss-murmur (provided by sssd-1.13.0)
[4.2.0-0.1.alpha1]
- Resolves: #805188 [RFE] 'ipa migrate-ds' ldapsearches with scope=1
- Resolves: #1019272 With 20000+ users, adding a user to a group intermittently
throws Internal server error
- Resolves: #1035494 Unable to add Kerberos principal via kadmin.local
- Resolves: #1045153 ipa-managed-entries --list -p
DM password
- Resolves: #1125950 ipa-server-install --uinstall doesn't remove port 7389
from ldap_port_t
- Resolves: #1132540 [RFE] Expose service delegation rules in UI and CLI
- Resolves: #1145584 ipaserver/install/cainstance.py creates pkiuser not
matching uidgid
- Resolves: #1176036 IDM client registration failure in a high load environment
- Resolves: #1183116 Remove Requires: subscription-manager
- Resolves: #1186054 permission-add does not prompt to enter --right option in
interactive mode
- Resolves: #1187524 Replication agreement with replica not disabled when
ipa-restore done without IPA installed
- Resolves: #1188195 Fax number not displayed for user-show when kinit'ed as
normal user.
- Resolves: #1189034 'an internal error has occurred' during ipa host-del
--updatedns
- Resolves: #1193554 ipa-client-automount: failing with error LDAP server
returned UNWILLING_TO_PERFORM. This likely means that minssf is enabled.
- Resolves: #1193759 IPA extdom plugin fails when encountering large groups
- Resolves: #1194312 [ipa-python] ipalib.errors.LDAPError: failed to decode
certificate: (SEC_ERROR_INVALID_ARGS) security library: invalid arguments.
- Resolves: #1194633 Default trust view can be deleted in lower case
- Resolves: #1196455 ipa-server-install step [8/27]: starting certificate
server instance - confusing CA staus message on TLS error
- Resolves: #1198263 Limit deadlocks between DS plugin DNA and slapi-nis
- Resolves: #1199527 [RFE] Use datepicker component for datetime fields
- Resolves: #1200867 [RFE] Make OTP validation window configurable
- Resolves: #1200883 [RFE] Switch apache to use mod_auth_gssapi
- Resolves: #1202998 CVE-2015-1827 ipa: memory corruption when using
get_user_grouplist() [rhel-7.2]
- Resolves: #1204637 slow group operations
- Resolves: #1204642 migrate-ds: slow add o users to default group
- Resolves: #1208461 IPA CA master server update stuck on checking getStatus
via https
- Resolves: #1211602 Hide ipa-server-install KDC master password option (-P)
- Resolves: #1211708 ipa-client-install gets stuck during NTP sync
- Resolves: #1215197 ipa-client-install ignores --ntp-server option during time
sync
- Resolves: #1215200 ipa-client-install configures IPA server as NTP source
even if IPA server has not ntpd configured
- Resolves: #1217009 OTP sync in UI does not work for TOTP tokens
- Related: #1204809 Rebase ipa to 4.2
- Update to upstream 4.2.0.alpha1
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (x86_64) | ipa-4.2.0-15.0.1.el7.src.rpm | 208782b0a03aa5c4d8cabfff5fbb8b0b953434f22a129c954bdcdede70b57f8e | ELSA-2024-3760 | ol7_x86_64_latest_archive |
| ipa-4.2.0-15.0.1.el7.src.rpm | 208782b0a03aa5c4d8cabfff5fbb8b0b953434f22a129c954bdcdede70b57f8e | ELSA-2024-3760 | ol7_x86_64_u2_base | |
| ipa-admintools-4.2.0-15.0.1.el7.x86_64.rpm | af6282c6b53628863841dbdc6c3e646e47b0a0b88bac61122fc82e89ce1d0dcb | ELBA-2017-0925 | ol7_x86_64_latest_archive | |
| ipa-admintools-4.2.0-15.0.1.el7.x86_64.rpm | af6282c6b53628863841dbdc6c3e646e47b0a0b88bac61122fc82e89ce1d0dcb | ELBA-2017-0925 | ol7_x86_64_u2_base | |
| ipa-client-4.2.0-15.0.1.el7.x86_64.rpm | 05ddece25099323589e8065a0680db3f71fd67b20eb40e32424e0f23702d74e1 | ELSA-2024-3760 | ol7_x86_64_latest_archive | |
| ipa-client-4.2.0-15.0.1.el7.x86_64.rpm | 05ddece25099323589e8065a0680db3f71fd67b20eb40e32424e0f23702d74e1 | ELSA-2024-3760 | ol7_x86_64_u2_base | |
| ipa-python-4.2.0-15.0.1.el7.x86_64.rpm | 2af08f67b3070c2a1e3c63359087b6782173d3b56086fa7bf998cc5f59e7f129 | ELSA-2016-1797 | ol7_x86_64_latest_archive | |
| ipa-python-4.2.0-15.0.1.el7.x86_64.rpm | 2af08f67b3070c2a1e3c63359087b6782173d3b56086fa7bf998cc5f59e7f129 | ELSA-2016-1797 | ol7_x86_64_u2_base | |
| ipa-server-4.2.0-15.0.1.el7.x86_64.rpm | 1580a1c8c9a02a6f143bd36b0d506ba25c62c542738dfff820df15b9e8ff14e8 | ELSA-2024-3760 | ol7_x86_64_latest_archive | |
| ipa-server-4.2.0-15.0.1.el7.x86_64.rpm | 1580a1c8c9a02a6f143bd36b0d506ba25c62c542738dfff820df15b9e8ff14e8 | ELSA-2024-3760 | ol7_x86_64_u2_base | |
| ipa-server-dns-4.2.0-15.0.1.el7.x86_64.rpm | c7c8e2e3cfed607e5aa5d13f4fdaecba35551c46dc0ad9f8998b822a72a39833 | ELSA-2024-3760 | ol7_x86_64_latest_archive | |
| ipa-server-dns-4.2.0-15.0.1.el7.x86_64.rpm | c7c8e2e3cfed607e5aa5d13f4fdaecba35551c46dc0ad9f8998b822a72a39833 | ELSA-2024-3760 | ol7_x86_64_u2_base | |
| ipa-server-trust-ad-4.2.0-15.0.1.el7.x86_64.rpm | 1746b954a747f8d31c493f37442d0bd34c95b6b155af2fecebdd86028d94089b | ELSA-2024-3760 | ol7_x86_64_latest_archive | |
| ipa-server-trust-ad-4.2.0-15.0.1.el7.x86_64.rpm | 1746b954a747f8d31c493f37442d0bd34c95b6b155af2fecebdd86028d94089b | ELSA-2024-3760 | ol7_x86_64_u2_base | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
