{"schema_version": "1.3.1", "id": "RLSA-2024:3044", "modified": "2024-06-14T14:02:27.114991Z", "published": "2024-06-14T13:59:30.118978Z", "related": ["CVE-2024-1481"], "summary": "Moderate: idm:DL1 security update", "details": "Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. \n\nSecurity Fix(es):\n\n* freeipa: specially crafted HTTP requests potentially lead to denial of service (CVE-2024-1481)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section.", "affected": [{"package": {"ecosystem": "Rocky Linux:8", "name": "custodia", "purl": "pkg:rpm/rocky-linux/custodia?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.6.0-3.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "ipa-healthcheck", "purl": "pkg:rpm/rocky-linux/ipa-healthcheck?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.12-3.module+el8.9.0+1433+5bd2f890"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "opendnssec", "purl": "pkg:rpm/rocky-linux/opendnssec?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:2.1.7-1.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "python-kdcproxy", "purl": "pkg:rpm/rocky-linux/python-kdcproxy?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.4-5.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "python-qrcode", "purl": "pkg:rpm/rocky-linux/python-qrcode?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:5.1-12.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "python-yubico", "purl": "pkg:rpm/rocky-linux/python-yubico?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:1.3.2-9.1.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "pyusb", "purl": "pkg:rpm/rocky-linux/pyusb?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:1.0.0-9.1.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "slapi-nis", "purl": "pkg:rpm/rocky-linux/slapi-nis?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:0.60.0-4.module+el8.9.0+1573+39ab85f4"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "softhsm", "purl": "pkg:rpm/rocky-linux/softhsm?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:2.6.0-5.module+el8.9.0+1371+ffa84eb9"}], "database_specific": {"yum_repository": "AppStream"}}]}], "references": [{"type": "ADVISORY", "url": "https://errata.rockylinux.org/RLSA-2024:3044"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262169"}], "credits": [{"name": "Rocky Enterprise Software Foundation"}, {"name": "Red Hat"}]}