Red Hat: CVE-2024-11029: freeipa: Administrative user data leaked through systemd journal (Multiple Advisories)

Red Hat: CVE-2024-11029: freeipa: Administrative user data leaked through systemd journal (Multiple Advisories)

Severity

5

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

01/15/2025

Created

01/17/2025

Added

01/16/2025

Modified

01/16/2025

Description

A flaw was found in the FreeIPA API audit, where it sends the whole FreeIPA command line to journalctl. As a consequence, during the FreeIPA installation process, it inadvertently leaks the administrative user credentials, including the administrator password, to the journal database. In the worst-case scenario, where the journal log is centralized, users with access to it can have improper access to the FreeIPA administrator credentials.

Solution(s)

• redhat-upgrade-ipa-client
• redhat-upgrade-ipa-client-common
• redhat-upgrade-ipa-client-debuginfo
• redhat-upgrade-ipa-client-epn
• redhat-upgrade-ipa-client-samba
• redhat-upgrade-ipa-common
• redhat-upgrade-ipa-debuginfo
• redhat-upgrade-ipa-debugsource
• redhat-upgrade-ipa-selinux
• redhat-upgrade-ipa-selinux-luna
• redhat-upgrade-ipa-selinux-nfast
• redhat-upgrade-ipa-server
• redhat-upgrade-ipa-server-common
• redhat-upgrade-ipa-server-debuginfo
• redhat-upgrade-ipa-server-dns
• redhat-upgrade-ipa-server-trust-ad
• redhat-upgrade-ipa-server-trust-ad-debuginfo
• redhat-upgrade-python3-ipaclient
• redhat-upgrade-python3-ipalib
• redhat-upgrade-python3-ipaserver
• redhat-upgrade-python3-ipatests

References

• CVE-2024-11029
• RHSA-2025:0334