Package freeipa: Information

    Source package: freeipa
    Version: 4.8.9-alt4.c9f2.9
    Build time:  Dec 30, 2024, 10:40 PM in the task #366435
    Category: System/Base
    Report package bug
    License: GPLv3+
    Summary: The Identity, Policy and Audit system
    Description: 
    IPA is an integrated solution to provide centrally managed Identity (users,
    hosts, services), Authentication (SSO, 2FA), and Authorization
    (host access control, SELinux user roles, services). The solution provides
    features for further integration with Linux based clients (SUDO, automount)
    and integration with Active Directory based infrastructures (Trusts).

    List of RPM packages built from this SRPM:
    freeipa-client (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-client-automount (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-client-common (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-client-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-client-epn (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-client-samba (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-common (x86_64, ppc64le, i586, armh, aarch64)
    freeipa-server (x86_64, ppc64le, armh, aarch64)
    freeipa-server-common (x86_64, ppc64le, armh, aarch64)
    freeipa-server-debuginfo (x86_64, ppc64le, armh, aarch64)
    freeipa-server-dns (x86_64, ppc64le, armh, aarch64)
    freeipa-server-trust-ad (x86_64, ppc64le, armh, aarch64)
    freeipa-server-trust-ad-debuginfo (x86_64, ppc64le, armh, aarch64)
    python3-module-freeipa (x86_64, ppc64le, i586, armh, aarch64)
    python3-module-ipaclient (x86_64, ppc64le, i586, armh, aarch64)
    python3-module-ipaserver (x86_64, ppc64le, armh, aarch64)
    python3-module-ipatests (x86_64, ppc64le, armh, aarch64)

    Maintainer: Stanislav Levin


      1. 389-ds-base-devel >= 1.4.1.6
      2. git-core
      3. libini_config-devel
      4. libkrb5-devel >= 1.16.3
      5. jsl
      6. keyutils
      7. chrony
      8. libpopt-devel
      9. libsasl2-devel
      10. python3(rjsmin)
      11. libssl-devel
      12. libsss_certmap-devel
      13. libsss_idmap-devel
      14. libsss_nss_idmap-devel >= 1.16.3
      15. libsystemd-devel
      16. python3-module-augeas
      17. libunistring-devel
      18. python3-module-cffi
      19. python3-module-cryptography
      20. python3-module-custodia
      21. python3-module-dateutil
      22. python3-module-dbus
      23. libuuid-devel
      24. python3-module-dns
      25. python3-module-docker
      26. python3-module-gssapi
      27. python3-module-ipa_hbac
      28. python3-module-jinja2
      29. python3-module-jwcrypto
      30. python3-module-ldap >= 3.2.0
      31. python3-module-lesscpy
      32. python3-module-lib389 >= 1.4.1.6
      33. python3-module-lxml
      34. python3-module-netaddr
      35. python3-module-netifaces
      36. python3-module-paste
      37. libxmlrpc-devel
      38. python3-module-pki-base >= 10.9.2
      39. python3-module-polib
      40. python3-module-pyasn1
      41. python3-module-pyasn1-modules
      42. python3-module-pycodestyle
      43. python3-module-pylint
      44. python3-module-pytest-multihost
      45. python3-module-pytest_sourceorder
      46. python3-module-qrcode
      47. python3-module-samba
      48. python3-module-setuptools
      49. python3-module-six
      50. nodejs
      51. samba-devel >= 4.7.6
      52. python3-module-sss
      53. python3-module-sss-murmur
      54. python3-module-sss_nss_idmap
      55. python3-module-sssdconfig >= 1.16.3
      56. python3-module-systemd
      57. python3-module-yaml
      58. softhsm
      59. python3-module-yubico
      60. systemd
      61. libcmocka-devel
      62. openldap-devel >= 2.4.47-alt2
      63. rpm-build-python3
      64. rpm-macros-apache2

    Last changed


    Dec. 24, 2024 Stanislav Levin 4.8.9-alt4.c9f2.9
    - Backported CVE fix (fixes: CVE-2024-1481).
    Oct. 25, 2024 Evgeny Sinelnikov 4.8.9-alt4.c9f2.8
    - Backport updates to ipaserver/dcerpc, ipasam, rpcserver and trust-add mudules.
    - Apply separated patch for CVE-2023-5455.
    Oct. 24, 2024 Evgeny Sinelnikov 4.8.9-alt4.c9f2.7
    - Backport domain SID in incoming PAC for trusted domains from freeipa-4.9.
    - Security mitigation: KDC must provide the new PAC_REQUESTER_SID buffer with
      ObjectSID value associated with the requester's principal.
    - Fixes: CVE-2020-25721.