Lucene search
RedHatRHSA-2024:0137HistoryJan 10, 2024 - 12:11 p.m.
(RHSA-2024:0137) Moderate: idm:DL1 security update
2024-01-1012:11:25
access.redhat.com
10
red hat identity management
kerberos
csrf protection
security update
cvss score
cve page
Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.
Security Fix(es):
-
Kerberos: delegation constrain bypass in S4U2Proxy (CVE-2020-17049)
-
ipa: Invalid CSRF protection (CVE-2023-5455)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
redhat
redhat
(RHSA-2024:0139) Moderate: idm:DL1 security update
2024-01-10 12:29:21
(RHSA-2024:0252) Moderate: krb5 security update
2024-01-15 15:25:49
(RHSA-2024:0143) Moderate: idm:DL1 security update
2024-01-10 12:30:55
nessus
nessus
AlmaLinux 8 : idm:DL1 (ALSA-2024:0143)
2024-01-12 00:00:00
Rocky Linux 8 : idm:DL1 (RLSA-2024:0143)
2024-01-12 00:00:00
RHEL 8 : krb5 (RHSA-2024:0252)
2024-01-15 00:00:00
rocky
rocky
idm:DL1 security update
2024-01-12 19:57:42
osv
osv
Moderate: idm:DL1 security update
2024-01-10 00:00:00
Moderate: idm:DL1 security update
2024-01-12 19:57:42
Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 00:00:00
oraclelinux
oraclelinux
idm:DL1 security update
2024-01-12 00:00:00
ipa security update
2024-01-11 00:00:00
krb5 security, bug fix, and enhancement update
2023-05-15 00:00:00
almalinux
almalinux
Moderate: idm:DL1 security update
2024-01-10 00:00:00
Moderate: krb5 security, bug fix, and enhancement update
2023-05-09 00:00:00
Moderate: ipa security update
2024-01-10 00:00:00
mskb
mskb
July 13, 2021 Public preview security update (KB5004243)
2021-06-02 00:00:00
June 8, 2021 Public preview security update (KB5003645)
2021-05-05 00:00:00
December 8, 2020—KB4592449 (OS Builds 18362.1256 and 18363.1256) - EXPIRED
2020-12-08 08:00:00
prion
prion
Security feature bypass
2020-11-11 07:15:00
Cross site request forgery (csrf)
2024-01-10 13:15:00
cvelist
cvelist
CVE-2020-17049 Kerberos KDC Security Feature Bypass Vulnerability
2020-11-11 00:00:00
CVE-2023-5455 Ipa: invalid csrf protection
2024-01-10 12:33:00
cbl_mariner
cbl_mariner
CVE-2020-17049 affecting package samba 4.12.5-6
2024-06-29 09:08:33
attackerkb
attackerkb
CVE-2020-17049
2020-11-11 00:00:00
nvd
nvd
CVE-2020-17049
2020-11-11 07:15:16
CVE-2023-5455
2024-01-10 13:15:48
openvas
openvas
Samba Security Feature Bypass Vulnerability (CVE-2020-17049)
2021-10-28 00:00:00
Fedora: Security Advisory for freeipa (FEDORA-2024-403145c4fb)
2024-01-26 00:00:00
Fedora: Security Advisory for freeipa (FEDORA-2024-9ab2666594)
2024-01-26 00:00:00
cve
cve
CVE-2020-17049
2020-11-11 07:15:16
CVE-2023-5455
2024-01-10 13:15:48
mscve
mscve
Kerberos KDC Security Feature Bypass Vulnerability
2020-11-10 08:00:00
msrc
msrc
Kerberos KDC の脆弱性 (CVE-2020-17049) に対応するためのガイダンス
2020-11-19 08:00:00
redhatcve
redhatcve
CVE-2020-17049
2021-11-22 20:20:39
CVE-2023-5455
2024-01-10 12:32:40
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.14.9-alt1
2021-11-01 00:00:00
redos
redos
ROS-20240402-09
2024-04-02 00:00:00
amazon
amazon
Medium: ipa
2024-02-15 03:52:00
Important: samba
2022-12-01 17:33:00
debiancve
debiancve
CVE-2023-5455
2024-01-10 13:15:48
fedora
fedora
[SECURITY] Fedora 39 Update: freeipa-4.11.1-1.fc39
2024-01-26 00:38:32
[SECURITY] Fedora 38 Update: freeipa-4.10.3-1.fc38
2024-01-26 00:43:14
ubuntucve
ubuntucve
CVE-2023-5455
2024-01-10 00:00:00
centos
centos
ipa, python2 security update
2024-01-12 19:09:24
suse
suse
Security update for samba and ldb (important)
2021-11-10 00:00:00
kaspersky
kaspersky
KLA12003 Multiple vulnerabilities in Microsoft Products (ESU)
2020-11-10 00:00:00
KLA12004 Multiple vulnerabilities in Microsoft Windows
2020-11-10 00:00:00
gentoo
gentoo
Samba: Multiple Vulnerabilities
2023-09-17 00:00:00
avleonov
avleonov