UBUNTU-CVE-2016-7030

FreeIPA uses a default password policy that locks an account after 5 unsuccessful authentication attempts, which allows remote attackers to cause a denial of service by locking out the account in which system services run on.

References

Affected packages

Ubuntu:Pro:14.04:LTS / freeipa

Package

Name: freeipa
Purl: pkg:deb/ubuntu/freeipa@3.3.4-0ubuntu3.1+esm1?arch=source&distro=trusty/esm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.3.4-0ubuntu3.1+esm1

Affected versions

3.*

3.2.1-0ubuntu1

3.3.4-0ubuntu1

3.3.4-0ubuntu2

3.3.4-0ubuntu3

3.3.4-0ubuntu3.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "freeipa-client",
            "binary_version": "3.3.4-0ubuntu3.1+esm1"
        },
        {
            "binary_name": "python-freeipa",
            "binary_version": "3.3.4-0ubuntu3.1+esm1"
        }
    ],
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"
}

Ubuntu:Pro:16.04:LTS / freeipa

Package

Name: freeipa
Purl: pkg:deb/ubuntu/freeipa@4.3.1-0ubuntu1+esm1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.3.1-0ubuntu1+esm1

Affected versions

4.*

4.1.4-1

4.3.1-0ubuntu1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "freeipa-admintools",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "freeipa-client",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "freeipa-common",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "freeipa-server",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "freeipa-server-dns",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "freeipa-server-trust-ad",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "freeipa-tests",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "python-ipaclient",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "python-ipalib",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "python-ipaserver",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        },
        {
            "binary_name": "python-ipatests",
            "binary_version": "4.3.1-0ubuntu1+esm1"
        }
    ],
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro"
}