Jump to:

CVE-2024-11029

Jump to:

CVE-2024-11029

Package freeipa updated to version 4.12.3-alt1 for branch sisyphus in task 369718.

Published: 2025-01-15
Modified: 2025-01-15

CVE-2024-11029

A flaw was found in the FreeIPA API audit, where it sends the whole FreeIPA command line to journalctl. As a consequence, during the FreeIPA installation process, it inadvertently leaks the administrative user credentials, including the administrator password, to the journal database. In the worst-case scenario, where the journal log is centralized, users with access to it can have improper access to the FreeIPA administrator credentials.

References:

RHSA-2025:0334
https://access.redhat.com/security/cve/CVE-2024-11029
RHBZ#2325557

Version: 2.1.0

Package freeipa update in sisyphus on 2025-01-16

ALT-PU-2025-1392-3

Closed vulnerabilities

CVE-2024-11029