Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:21140

Опубликовано: 27 нояб. 2025
Источник: rocky
Оценка: Important

Описание

Important: idm:DL1 security update

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.

Security Fix(es):

  • python-kdcproxy: Unauthenticated SSRF via Realm?Controlled DNS SRV (CVE-2025-59088)

  • python-kdcproxy: Remote DoS via unbounded TCP upstream buffering (CVE-2025-59089)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
bind-dyndb-ldapx86_646.module+el8.10.0+1960+1ed527b3bind-dyndb-ldap-11.6-6.module+el8.10.0+1960+1ed527b3.x86_64.rpm
custodianoarch3.module+el8.9.0+1371+ffa84eb9custodia-0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm
custodianoarch3.module+el8.9.0+1371+ffa84eb9custodia-0.6.0-3.module+el8.9.0+1371+ffa84eb9.noarch.rpm
ipa-clientx86_6420.module+el8.10.0+2066+d74ade98ipa-client-4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm
ipa-clientx86_6420.module+el8.10.0+2067+377bdd64ipa-client-4.9.13-20.module+el8.10.0+2067+377bdd64.x86_64.rpm
ipa-client-commonnoarch20.module+el8.10.0+2067+377bdd64ipa-client-common-4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm
ipa-client-commonnoarch20.module+el8.10.0+2066+d74ade98ipa-client-common-4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm
ipa-client-commonnoarch20.module+el8.10.0+2067+377bdd64ipa-client-common-4.9.13-20.module+el8.10.0+2067+377bdd64.noarch.rpm
ipa-client-commonnoarch20.module+el8.10.0+2066+d74ade98ipa-client-common-4.9.13-20.module+el8.10.0+2066+d74ade98.noarch.rpm
ipa-client-epnx86_6420.module+el8.10.0+2066+d74ade98ipa-client-epn-4.9.13-20.module+el8.10.0+2066+d74ade98.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-59088
CVE-2025-59089

Ссылки на источники

Исправления

Связанные уязвимости

rocky логотип

RLSA-2025:21142

rocky
3 месяца назад

Important: python-kdcproxy security update

rocky логотип

RLSA-2025:21139

rocky
3 месяца назад

Important: python-kdcproxy security update

oracle-oval логотип

ELSA-2025-22982

oracle-oval
около 2 месяцев назад

ELSA-2025-22982: python-kdcproxy security update (IMPORTANT)

oracle-oval логотип

ELSA-2025-21142

oracle-oval
2 месяца назад

ELSA-2025-21142: python-kdcproxy security update (IMPORTANT)

oracle-oval логотип

ELSA-2025-21140

oracle-oval
3 месяца назад

ELSA-2025-21140: idm:DL1 security update (IMPORTANT)