Issued:: 2025-02-17
Updated:: 2025-02-17

RHSA-2025:1514 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: ipa security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for ipa is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.

Security Fix(es):

jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods (CVE-2020-11023)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 7.7 x86_64

Fixes

BZ - 1850004 - CVE-2020-11023 jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods

CVEs

CVE-2020-11023

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.7

SRPM
ipa-4.6.5-11.el7_7.5.src.rpm	SHA-256: 9863037fa408853d374c7931794f306cd373c1827d9c589d382fb969cbf8f3ed
x86_64
ipa-client-4.6.5-11.el7_7.5.x86_64.rpm	SHA-256: eb92ea73e4d9d330cd45273b03fe55b80bec49f28ac39a52692828745241107f
ipa-client-common-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 0c2e2ecbc22a50e5b225e957db88ca462326aff6c4ac9fba62b621d06de9ba68
ipa-common-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 138f63ff1d354f441efb77e6765cb9d9e52fe8ee627ae4d56e55a6297fd965cb
ipa-debuginfo-4.6.5-11.el7_7.5.x86_64.rpm	SHA-256: 69ecdda1253cd0da5fd84bb6c37baf27fade0d708362e574041787ce5cc8f697
ipa-python-compat-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 74fd2b5b317877721666dc1ba9249a08a8fcb3cac405040637e0be50ae8a2e22
ipa-server-4.6.5-11.el7_7.5.x86_64.rpm	SHA-256: eb29ee01ee419614201a35cc9889ceb400bd58ae2d791016e87ab668429d8fae
ipa-server-common-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 0cfc1930cc77e8d9a48d9078061708c269b9092ef80b126b07062c052c5569a7
ipa-server-dns-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 56e73fe474a0c33a43a280a1b7502eabce8b05df2f1ed926acc4bfd0021d5c71
ipa-server-trust-ad-4.6.5-11.el7_7.5.x86_64.rpm	SHA-256: 8c9c9c04a65c32a8925913511bab6e4ca2f7e9504b01d987ba36a295d9f72a4b
python2-ipaclient-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 7ea845df130e1439b64497a34eaf7422c451ca940a0db30bc3047ed64ec82da4
python2-ipalib-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 0dfe85933f7488faf4c32b4e43261a4f8687756331aca9c357e6d8ff567cbd40
python2-ipaserver-4.6.5-11.el7_7.5.noarch.rpm	SHA-256: 526f8763b6fdb83f87f92e1bd42a7cb4daaa32792d807b1cd005eb9640f66394

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation