ELSA-2024-3754

ULN >
Oracle Linux Errata repository >
ELSA-2024-3754

ELSA-2024-3754 - ipa security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-06-10

Description

[4.11.0-15.0.1]
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Add bind to ipa-server-common Requires [Orabug: 36518596]

[4.11.0-15]
- Resolves: RHEL-32231 CVE-2024-3183 ipa: freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force
- Resolves: RHEL-31409 CVE-2024-2698 ipa: freeipa: delegation rules allow a proxy service to impersonate any user to access another target service

Related CVEs

CVE-2024-3183

CVE-2024-2698

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	ipa-4.11.0-15.0.1.el9_4.src.rpm	62b3af339998641944e7ed88841708c7	-	ol9_aarch64_appstream
	ipa-4.11.0-15.0.1.el9_4.src.rpm	62b3af339998641944e7ed88841708c7	-	ol9_aarch64_codeready_builder
	ipa-client-4.11.0-15.0.1.el9_4.aarch64.rpm	adfa79428eb5873bb6f946053a82f884	-	ol9_aarch64_appstream
	ipa-client-common-4.11.0-15.0.1.el9_4.noarch.rpm	b541b9adc581267e975c9513d82922dd	-	ol9_aarch64_appstream
	ipa-client-epn-4.11.0-15.0.1.el9_4.aarch64.rpm	043e0ce8a2283aafe7c61302b19a90ef	-	ol9_aarch64_appstream
	ipa-client-samba-4.11.0-15.0.1.el9_4.aarch64.rpm	d73cec1b86064385ef92063274324eb6	-	ol9_aarch64_appstream
	ipa-common-4.11.0-15.0.1.el9_4.noarch.rpm	f185b6f7ca9154beb90c985301012f4f	-	ol9_aarch64_appstream
	ipa-selinux-4.11.0-15.0.1.el9_4.noarch.rpm	394573c203d8e24cab37d13d6deee223	-	ol9_aarch64_appstream
	ipa-server-4.11.0-15.0.1.el9_4.aarch64.rpm	1e1692150dc8ee84dc99a02424350899	-	ol9_aarch64_appstream
	ipa-server-common-4.11.0-15.0.1.el9_4.noarch.rpm	5e763866e9aa69a963155fbc9d2d9793	-	ol9_aarch64_appstream
	ipa-server-dns-4.11.0-15.0.1.el9_4.noarch.rpm	e543e50d6ce8093200a845ccdc7d28be	-	ol9_aarch64_appstream
	ipa-server-trust-ad-4.11.0-15.0.1.el9_4.aarch64.rpm	a4f28f9018db87a87278c589b65aa03e	-	ol9_aarch64_appstream
	python3-ipaclient-4.11.0-15.0.1.el9_4.noarch.rpm	52a03f474f089e13c44cf254e48d1ddd	-	ol9_aarch64_appstream
	python3-ipalib-4.11.0-15.0.1.el9_4.noarch.rpm	da7ec81d8c0c12ccab494f1e74adee5d	-	ol9_aarch64_appstream
	python3-ipaserver-4.11.0-15.0.1.el9_4.noarch.rpm	dccf686dd9d774dc7602c0b12b2ff4ce	-	ol9_aarch64_appstream
	python3-ipatests-4.11.0-15.0.1.el9_4.noarch.rpm	683cf29085dfc7ba03fb41da4870c568	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	ipa-4.11.0-15.0.1.el9_4.src.rpm	62b3af339998641944e7ed88841708c7	-	ol9_x86_64_appstream
	ipa-4.11.0-15.0.1.el9_4.src.rpm	62b3af339998641944e7ed88841708c7	-	ol9_x86_64_codeready_builder
	ipa-client-4.11.0-15.0.1.el9_4.x86_64.rpm	e41215e292ec738e3719092b282aa75b	-	ol9_x86_64_appstream
	ipa-client-common-4.11.0-15.0.1.el9_4.noarch.rpm	b541b9adc581267e975c9513d82922dd	-	ol9_x86_64_appstream
	ipa-client-epn-4.11.0-15.0.1.el9_4.x86_64.rpm	867f9cfbdb6671fbd83d3a0f3d947f04	-	ol9_x86_64_appstream
	ipa-client-samba-4.11.0-15.0.1.el9_4.x86_64.rpm	8759ef1ea4ea81abb8d17d10dc19f82a	-	ol9_x86_64_appstream
	ipa-common-4.11.0-15.0.1.el9_4.noarch.rpm	f185b6f7ca9154beb90c985301012f4f	-	ol9_x86_64_appstream
	ipa-selinux-4.11.0-15.0.1.el9_4.noarch.rpm	394573c203d8e24cab37d13d6deee223	-	ol9_x86_64_appstream
	ipa-server-4.11.0-15.0.1.el9_4.x86_64.rpm	933e45e9c427b27db91d70895ccc6b95	-	ol9_x86_64_appstream
	ipa-server-common-4.11.0-15.0.1.el9_4.noarch.rpm	5e763866e9aa69a963155fbc9d2d9793	-	ol9_x86_64_appstream
	ipa-server-dns-4.11.0-15.0.1.el9_4.noarch.rpm	e543e50d6ce8093200a845ccdc7d28be	-	ol9_x86_64_appstream
	ipa-server-trust-ad-4.11.0-15.0.1.el9_4.x86_64.rpm	57c8f4fd843f0f2508fe308143e54fac	-	ol9_x86_64_appstream
	python3-ipaclient-4.11.0-15.0.1.el9_4.noarch.rpm	52a03f474f089e13c44cf254e48d1ddd	-	ol9_x86_64_appstream
	python3-ipalib-4.11.0-15.0.1.el9_4.noarch.rpm	da7ec81d8c0c12ccab494f1e74adee5d	-	ol9_x86_64_appstream
	python3-ipaserver-4.11.0-15.0.1.el9_4.noarch.rpm	dccf686dd9d774dc7602c0b12b2ff4ce	-	ol9_x86_64_appstream
	python3-ipatests-4.11.0-15.0.1.el9_4.noarch.rpm	683cf29085dfc7ba03fb41da4870c568	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691