ELSA-2020-0378

ELSA-2020-0378 - ipa security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-02-05

Description


[4.6.5-11.0.1]
- Blank out header-logo.png product-name.png
- Replace login-screen-logo.png [Orabug: 20362818]

[4.6.5-11.el7_7.4]
- Resolves: #1781153 - After upgrade AD Trust Agents were removed from LDAP
- trust upgrade: ensure that host is member of adtrust agents
- Resolves: #1777303 - CVE-2019-10195 ipa: batch API logging user passwords to /var/log/httpd/error_log
- CVE-2019-10195: Don't log passwords embedded in commands in calls using batch
- Resolves: #1773953 - User incorrectly added to negative cache when backend is reconnecting to IPA service / timed out: error code 32 'No such object'
- extdom: unify error code handling especially LDAP_NO_SUCH_OBJECT
- ipa-extdom-extop: test timed out getgrgid_r
- Resolves: #1770728 - Issue with adding multiple RHEL 7 IPA replica to RHEL 6 IPA master
- DL0 replica install: fix nsDS5ReplicaBindDN config
- Resolves: #1767300 - CVE-2019-14867 ipa: Denial of service in IPA server due to wrong use of ber_scanf()
- Make sure to have storage space for tag


Related CVEs


CVE-2019-14867
CVE-2019-10195

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) ipa-4.6.5-11.0.1.el7_7.4.src.rpmc3f384df29a866972a2220a5a2a97428-
ipa-client-4.6.5-11.0.1.el7_7.4.aarch64.rpmef3f8d5373686a4cd1ee96cdbd455940-
ipa-client-common-4.6.5-11.0.1.el7_7.4.noarch.rpmc21e07f0844132f21da8bc600ac64d23-
ipa-common-4.6.5-11.0.1.el7_7.4.noarch.rpm619770c46af17257b979b3ea6a5b5ae0-
ipa-python-compat-4.6.5-11.0.1.el7_7.4.noarch.rpmf05aa986e8e3f25c1f1f892e5b507dff-
ipa-server-4.6.5-11.0.1.el7_7.4.aarch64.rpme9e4251d8061ef29bd207ecd11c098ce-
ipa-server-common-4.6.5-11.0.1.el7_7.4.noarch.rpm4103b9901b815e4acddd7c97ef3dd6a5-
ipa-server-dns-4.6.5-11.0.1.el7_7.4.noarch.rpma2c0804f69e9b6edbe935fbf58d7413b-
ipa-server-trust-ad-4.6.5-11.0.1.el7_7.4.aarch64.rpm597246843d5e86ee02cf87157a8663f0-
python2-ipaclient-4.6.5-11.0.1.el7_7.4.noarch.rpm32c053074663977fb46ddd47f17d30f9-
python2-ipalib-4.6.5-11.0.1.el7_7.4.noarch.rpm436801e4fa88fc23d43fbc8de413c9ec-
python2-ipaserver-4.6.5-11.0.1.el7_7.4.noarch.rpm7859f7d47af8ff4ce6ebf80ea47a1a77-
Oracle Linux 7 (x86_64) ipa-4.6.5-11.0.1.el7_7.4.src.rpmc3f384df29a866972a2220a5a2a97428-
ipa-client-4.6.5-11.0.1.el7_7.4.x86_64.rpmcea5438a7b49faea1e1d8b502f2eb741-
ipa-client-common-4.6.5-11.0.1.el7_7.4.noarch.rpmc21e07f0844132f21da8bc600ac64d23-
ipa-common-4.6.5-11.0.1.el7_7.4.noarch.rpm619770c46af17257b979b3ea6a5b5ae0-
ipa-python-compat-4.6.5-11.0.1.el7_7.4.noarch.rpmf05aa986e8e3f25c1f1f892e5b507dff-
ipa-server-4.6.5-11.0.1.el7_7.4.x86_64.rpm953ff47ba7e86e22c244987da4284ee1-
ipa-server-common-4.6.5-11.0.1.el7_7.4.noarch.rpm4103b9901b815e4acddd7c97ef3dd6a5-
ipa-server-dns-4.6.5-11.0.1.el7_7.4.noarch.rpma2c0804f69e9b6edbe935fbf58d7413b-
ipa-server-trust-ad-4.6.5-11.0.1.el7_7.4.x86_64.rpma689953d87f63996de0f73d684c07e07-
python2-ipaclient-4.6.5-11.0.1.el7_7.4.noarch.rpm32c053074663977fb46ddd47f17d30f9-
python2-ipalib-4.6.5-11.0.1.el7_7.4.noarch.rpm436801e4fa88fc23d43fbc8de413c9ec-
python2-ipaserver-4.6.5-11.0.1.el7_7.4.noarch.rpm7859f7d47af8ff4ce6ebf80ea47a1a77-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete