ELSA-2024-3754

ULN >
Oracle Linux Errata repository >
ELSA-2024-3754

ELSA-2024-3754 - ipa security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-06-10

Description

[4.11.0-15.0.1]
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Add bind to ipa-server-common Requires [Orabug: 36518596]

[4.11.0-15]
- Resolves: RHEL-32231 CVE-2024-3183 ipa: freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force
- Resolves: RHEL-31409 CVE-2024-2698 ipa: freeipa: delegation rules allow a proxy service to impersonate any user to access another target service

Related CVEs

CVE-2024-3183

CVE-2024-2698

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	ipa-4.11.0-15.0.1.el9_4.src.rpm	6e4c3edddb7e22d417f8cb617e2876a8d1db30dff00e3d79c5d9aded5c19406a	-	ol9_aarch64_appstream
	ipa-4.11.0-15.0.1.el9_4.src.rpm	6e4c3edddb7e22d417f8cb617e2876a8d1db30dff00e3d79c5d9aded5c19406a	-	ol9_aarch64_codeready_builder
	ipa-client-4.11.0-15.0.1.el9_4.aarch64.rpm	d3ecbf3a7c38faab73c0fe3dd5d3d8d0e8f514ecb6eb5cd7af298cfcde1f0ac4	-	ol9_aarch64_appstream
	ipa-client-common-4.11.0-15.0.1.el9_4.noarch.rpm	c88b8771ad898bdceb9bcca386c12294fea996f547b19a4ce64ca1aa33f7f3e1	-	ol9_aarch64_appstream
	ipa-client-epn-4.11.0-15.0.1.el9_4.aarch64.rpm	689c79c7f6d1399123fab7abf09ee7fc2b382ac54e6d0a57aab86f0d1a0a73b9	-	ol9_aarch64_appstream
	ipa-client-samba-4.11.0-15.0.1.el9_4.aarch64.rpm	d4f47767ca8b1906a5e5cce84b08b1ba0f3488d4f72c5f56fe67c15e2762a048	-	ol9_aarch64_appstream
	ipa-common-4.11.0-15.0.1.el9_4.noarch.rpm	34a3e252819d19ab2650c5fa30aa7df5c56c69f392219d24088b6c12348433e1	-	ol9_aarch64_appstream
	ipa-selinux-4.11.0-15.0.1.el9_4.noarch.rpm	94859373096466fd4ecbd7b4c0dacb350173bc7338c99a6f9b1cb91f02f0d383	-	ol9_aarch64_appstream
	ipa-server-4.11.0-15.0.1.el9_4.aarch64.rpm	da2fb2d16c1f18757cb3034deca218aecaa94573dcfd573faa917f0b35fab37c	-	ol9_aarch64_appstream
	ipa-server-common-4.11.0-15.0.1.el9_4.noarch.rpm	c0f8294886860645144b09f92faf154ceae9f51e677445f4b95a1dcb58a7e1b1	-	ol9_aarch64_appstream
	ipa-server-dns-4.11.0-15.0.1.el9_4.noarch.rpm	cd5ce28f40e8d923b36969c0878e12414e68ba36a456ec4d1b027edc88f9b40f	-	ol9_aarch64_appstream
	ipa-server-trust-ad-4.11.0-15.0.1.el9_4.aarch64.rpm	d4c81fa45cbeddc05efdb9ab8e2789f28a0bb66c937aa8e7f9a6f0bef8317777	-	ol9_aarch64_appstream
	python3-ipaclient-4.11.0-15.0.1.el9_4.noarch.rpm	655ae3615ea3b6a8d9ba2ed13cfcdb129382f1ed74ac8954733a32dd6d219cb8	-	ol9_aarch64_appstream
	python3-ipalib-4.11.0-15.0.1.el9_4.noarch.rpm	e569dfcc5d01803e3e7ff4956085740f891e874b8058182235ec6f841a82d3f7	-	ol9_aarch64_appstream
	python3-ipaserver-4.11.0-15.0.1.el9_4.noarch.rpm	b062035cbaf62c7ad7ed9a7b2eee4a66e6ac3b201b32dba25970ecf51ecab8c8	-	ol9_aarch64_appstream
	python3-ipatests-4.11.0-15.0.1.el9_4.noarch.rpm	459b3c97dbc4e103017b36ffc6de0517a4e505cad68dcc394e9cc5443462dbe2	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	ipa-4.11.0-15.0.1.el9_4.src.rpm	6e4c3edddb7e22d417f8cb617e2876a8d1db30dff00e3d79c5d9aded5c19406a	-	ol9_x86_64_appstream
	ipa-4.11.0-15.0.1.el9_4.src.rpm	6e4c3edddb7e22d417f8cb617e2876a8d1db30dff00e3d79c5d9aded5c19406a	-	ol9_x86_64_codeready_builder
	ipa-client-4.11.0-15.0.1.el9_4.x86_64.rpm	3e49a0cf508653d6cd3435eb3674f516cfa5cc7c1891888575cda8359ef2092d	-	ol9_x86_64_appstream
	ipa-client-common-4.11.0-15.0.1.el9_4.noarch.rpm	c88b8771ad898bdceb9bcca386c12294fea996f547b19a4ce64ca1aa33f7f3e1	-	ol9_x86_64_appstream
	ipa-client-epn-4.11.0-15.0.1.el9_4.x86_64.rpm	0592289d6bcb5e3f909e1b522785b015ef3908d8824d590db5394caa0dc44a4e	-	ol9_x86_64_appstream
	ipa-client-samba-4.11.0-15.0.1.el9_4.x86_64.rpm	2fc3be91fa84dcba4af9d5a281c807a2dae3c08154463a4da82c68940a389e76	-	ol9_x86_64_appstream
	ipa-common-4.11.0-15.0.1.el9_4.noarch.rpm	34a3e252819d19ab2650c5fa30aa7df5c56c69f392219d24088b6c12348433e1	-	ol9_x86_64_appstream
	ipa-selinux-4.11.0-15.0.1.el9_4.noarch.rpm	94859373096466fd4ecbd7b4c0dacb350173bc7338c99a6f9b1cb91f02f0d383	-	ol9_x86_64_appstream
	ipa-server-4.11.0-15.0.1.el9_4.x86_64.rpm	cca7fb7c8f3131d2fd9713b7ed3091a23bd1d99c2d5c140f25f043330f4d0fc3	-	ol9_x86_64_appstream
	ipa-server-common-4.11.0-15.0.1.el9_4.noarch.rpm	c0f8294886860645144b09f92faf154ceae9f51e677445f4b95a1dcb58a7e1b1	-	ol9_x86_64_appstream
	ipa-server-dns-4.11.0-15.0.1.el9_4.noarch.rpm	cd5ce28f40e8d923b36969c0878e12414e68ba36a456ec4d1b027edc88f9b40f	-	ol9_x86_64_appstream
	ipa-server-trust-ad-4.11.0-15.0.1.el9_4.x86_64.rpm	20b2fa6d77237faaedb41b98a5fa39ead92b76ab2a04ab4dcb2f16b0f6f4ca73	-	ol9_x86_64_appstream
	python3-ipaclient-4.11.0-15.0.1.el9_4.noarch.rpm	655ae3615ea3b6a8d9ba2ed13cfcdb129382f1ed74ac8954733a32dd6d219cb8	-	ol9_x86_64_appstream
	python3-ipalib-4.11.0-15.0.1.el9_4.noarch.rpm	e569dfcc5d01803e3e7ff4956085740f891e874b8058182235ec6f841a82d3f7	-	ol9_x86_64_appstream
	python3-ipaserver-4.11.0-15.0.1.el9_4.noarch.rpm	b062035cbaf62c7ad7ed9a7b2eee4a66e6ac3b201b32dba25970ecf51ecab8c8	-	ol9_x86_64_appstream
	python3-ipatests-4.11.0-15.0.1.el9_4.noarch.rpm	459b3c97dbc4e103017b36ffc6de0517a4e505cad68dcc394e9cc5443462dbe2	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691