(RHSA-2024:0138) Moderate: idm:DL1 security update

2024-01-1012:11:37

access.redhat.com

red hat identity management

centralized authentication

authorization solution

cve-2023-5455

csrf protection

enterprise environments

security fix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

35.7%

JSON

Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.

Security Fix(es):

ipa: Invalid CSRF protection (CVE-2023-5455)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanys390xipa-server-trust-ad-debuginfo< 4.9.2-10.module+el8.4.0+20744+ffd02a6dipa-server-trust-ad-debuginfo-4.9.2-10.module+el8.4.0+20744+ffd02a6d.s390x.rpm
RedHatanyppc64leipa-client< 4.9.2-10.module+el8.4.0+20744+ffd02a6dipa-client-4.9.2-10.module+el8.4.0+20744+ffd02a6d.ppc64le.rpm
RedHatanyppc64leipa-server-trust-ad< 4.9.2-10.module+el8.4.0+20744+ffd02a6dipa-server-trust-ad-4.9.2-10.module+el8.4.0+20744+ffd02a6d.ppc64le.rpm
RedHatanys390xopendnssec-debuginfo< 2.1.7-1.module+el8.4.0+9007+5084bdd8opendnssec-debuginfo-2.1.7-1.module+el8.4.0+9007+5084bdd8.s390x.rpm
RedHatanyaarch64ipa-server-debuginfo< 4.9.2-10.module+el8.4.0+20744+ffd02a6dipa-server-debuginfo-4.9.2-10.module+el8.4.0+20744+ffd02a6d.aarch64.rpm
RedHatanys390xslapi-nis-debugsource< 0.56.6-2.1.module+el8.4.0+12579+0538eac8slapi-nis-debugsource-0.56.6-2.1.module+el8.4.0+12579+0538eac8.s390x.rpm
RedHatanyx86_64ipa-server-trust-ad< 4.9.2-10.module+el8.4.0+20744+ffd02a6dipa-server-trust-ad-4.9.2-10.module+el8.4.0+20744+ffd02a6d.x86_64.rpm
RedHatanyaarch64softhsm< 2.6.0-5.module+el8.4.0+10227+076cd560softhsm-2.6.0-5.module+el8.4.0+10227+076cd560.aarch64.rpm
RedHatanynoarchipa-healthcheck-core< 0.7-3.module+el8.4.0+9007+5084bdd8ipa-healthcheck-core-0.7-3.module+el8.4.0+9007+5084bdd8.noarch.rpm
RedHatanyppc64leipa-server< 4.9.2-10.module+el8.4.0+20744+ffd02a6dipa-server-4.9.2-10.module+el8.4.0+20744+ffd02a6d.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	s390x	ipa-server-trust-ad-debuginfo	< 4.9.2-10.module+el8.4.0+20744+ffd02a6d	ipa-server-trust-ad-debuginfo-4.9.2-10.module+el8.4.0+20744+ffd02a6d.s390x.rpm
RedHat	any	ppc64le	ipa-client	< 4.9.2-10.module+el8.4.0+20744+ffd02a6d	ipa-client-4.9.2-10.module+el8.4.0+20744+ffd02a6d.ppc64le.rpm
RedHat	any	ppc64le	ipa-server-trust-ad	< 4.9.2-10.module+el8.4.0+20744+ffd02a6d	ipa-server-trust-ad-4.9.2-10.module+el8.4.0+20744+ffd02a6d.ppc64le.rpm
RedHat	any	s390x	opendnssec-debuginfo	< 2.1.7-1.module+el8.4.0+9007+5084bdd8	opendnssec-debuginfo-2.1.7-1.module+el8.4.0+9007+5084bdd8.s390x.rpm
RedHat	any	aarch64	ipa-server-debuginfo	< 4.9.2-10.module+el8.4.0+20744+ffd02a6d	ipa-server-debuginfo-4.9.2-10.module+el8.4.0+20744+ffd02a6d.aarch64.rpm
RedHat	any	s390x	slapi-nis-debugsource	< 0.56.6-2.1.module+el8.4.0+12579+0538eac8	slapi-nis-debugsource-0.56.6-2.1.module+el8.4.0+12579+0538eac8.s390x.rpm
RedHat	any	x86_64	ipa-server-trust-ad	< 4.9.2-10.module+el8.4.0+20744+ffd02a6d	ipa-server-trust-ad-4.9.2-10.module+el8.4.0+20744+ffd02a6d.x86_64.rpm
RedHat	any	aarch64	softhsm	< 2.6.0-5.module+el8.4.0+10227+076cd560	softhsm-2.6.0-5.module+el8.4.0+10227+076cd560.aarch64.rpm
RedHat	any	noarch	ipa-healthcheck-core	< 0.7-3.module+el8.4.0+9007+5084bdd8	ipa-healthcheck-core-0.7-3.module+el8.4.0+9007+5084bdd8.noarch.rpm
RedHat	any	ppc64le	ipa-server	< 4.9.2-10.module+el8.4.0+20744+ffd02a6d	ipa-server-4.9.2-10.module+el8.4.0+20744+ffd02a6d.ppc64le.rpm