[Git][security-tracker-team/security-tracker][master] CVE-2025-4404/freeipa [bookworm]

[Bastien Roucariès (@rouca)]

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dfd25b43 by Bastien Roucariès at 2025-09-27T19:01:16+02:00
CVE-2025-4404/freeipa [bookworm]

Mark as ignored server is not packaged for bookworm.

It is a bug in freeipa server not on client

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -33862,10 +33862,11 @@ CVE-2025-4754 (Insufficient Session Expiration vulnerability in ash-project ash_
 	NOT-FOR-US: ash-project ash_authentication_phoenix
 CVE-2025-4404 (A privilege escalation from host to domain vulnerability was found in  ...)
 	- freeipa 4.12.4-1 (bug #1108050)
-	[bookworm] - freeipa <no-dsa> (Minor issue)
+	[bookworm] - freeipa <ignored> (Minor issue; server is not packaged for debian bookworm)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2364606
 	NOTE: Fixed by: https://pagure.io/freeipa/c/6b9400c135ed16b10057b350cc9ce42aa0e862d4 (master)
 	NOTE: Fixed by: https://pagure.io/freeipa/c/796ed20092d554ee0c9e23295e346ec1e8a0bf6e (ipa-4-12-branch)
+	NOTE: Server side problem. Need to upgrade server
 CVE-2025-4365 (Arbitrary file read inNetScaler Console and NetScaler SDX (SVM))
 	NOT-FOR-US: Citrix
 CVE-2025-49882 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfd25b43970de2c2e8b5f927dc66402a286efe52

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfd25b43970de2c2e8b5f927dc66402a286efe52
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250927/cf2a9bf3/attachment-0001.htm>