|
|
Subscribe / Log in / New account

Oracle alert ELSA-2025-9184 (ipa)



From:
              Errata Announcements for Oracle Linux via El-errata <el-errata@oss.oracle.com>


To:
              el-errata@oss.oracle.com


Subject:
              [El-errata] ELSA-2025-9184 Important: Oracle Linux 9 ipa security update


Date:
              Wed, 18 Jun 2025 20:51:30 -0700


Message-ID:
              <mailman.471.1750306528.37250.el-errata@oss.oracle.com>


Oracle Linux Security Advisory ELSA-2025-9184

http://linux.oracle.com/errata/ELSA-2025-9184.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
ipa-client-4.12.2-14.0.1.el9_6.1.x86_64.rpm
ipa-client-common-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-client-encrypted-dns-4.12.2-14.0.1.el9_6.1.x86_64.rpm
ipa-client-epn-4.12.2-14.0.1.el9_6.1.x86_64.rpm
ipa-client-samba-4.12.2-14.0.1.el9_6.1.x86_64.rpm
ipa-common-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-selinux-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-selinux-luna-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-selinux-nfast-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-server-4.12.2-14.0.1.el9_6.1.x86_64.rpm
ipa-server-common-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-server-dns-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-server-encrypted-dns-4.12.2-14.0.1.el9_6.1.x86_64.rpm
ipa-server-trust-ad-4.12.2-14.0.1.el9_6.1.x86_64.rpm
python3-ipaclient-4.12.2-14.0.1.el9_6.1.noarch.rpm
python3-ipalib-4.12.2-14.0.1.el9_6.1.noarch.rpm
python3-ipaserver-4.12.2-14.0.1.el9_6.1.noarch.rpm
python3-ipatests-4.12.2-14.0.1.el9_6.1.noarch.rpm

aarch64:
ipa-client-4.12.2-14.0.1.el9_6.1.aarch64.rpm
ipa-client-common-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-client-encrypted-dns-4.12.2-14.0.1.el9_6.1.aarch64.rpm
ipa-client-epn-4.12.2-14.0.1.el9_6.1.aarch64.rpm
ipa-client-samba-4.12.2-14.0.1.el9_6.1.aarch64.rpm
ipa-common-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-selinux-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-selinux-luna-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-selinux-nfast-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-server-4.12.2-14.0.1.el9_6.1.aarch64.rpm
ipa-server-common-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-server-dns-4.12.2-14.0.1.el9_6.1.noarch.rpm
ipa-server-encrypted-dns-4.12.2-14.0.1.el9_6.1.aarch64.rpm
ipa-server-trust-ad-4.12.2-14.0.1.el9_6.1.aarch64.rpm
python3-ipaclient-4.12.2-14.0.1.el9_6.1.noarch.rpm
python3-ipalib-4.12.2-14.0.1.el9_6.1.noarch.rpm
python3-ipaserver-4.12.2-14.0.1.el9_6.1.noarch.rpm
python3-ipatests-4.12.2-14.0.1.el9_6.1.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//ipa-4.12.2-14.0....

Related CVEs:

CVE-2025-4404




Description of changes:

[4.12.2-14.0.1]
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Add bind to ipa-server-common Requires [Orabug: 36518596]

[4.12.2-14.1]
- Resolves: RHEL-89908
  EMBARGOED CVE-2025-4404 ipa: Privilege escalation from host to domain admin in FreeIPA
- Resolves: RHEL-89144
  kdb: ipadb_get_connection() succeeds but returns null LDAP context


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds