UBUNTU-CVE-2019-14826
- Source
- https://ubuntu.com/security/CVE-2019-14826
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-14826.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2019-14826
- Upstream
- Published
- 2019-09-17T16:15:00Z
- Modified
- 2026-05-20T16:03:42.925978421Z
- Severity
-
- 5.6 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N CVSS Calculator
- 4.4 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and can use this to gain access to the session.
- References
Affected packages
Ubuntu:18.04:LTS
freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/ubuntu/freeipa?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
4.*
4.4.4-3ubuntu1
4.4.4-4
4.7.0~pre1+git20180411-2ubuntu1
4.7.0~pre1+git20180411-2ubuntu2
Ecosystem specific
{
"binaries": [
{
"binary_name": "freeipa-admintools",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "freeipa-client",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "freeipa-common",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "freeipa-server",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "freeipa-server-dns",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "freeipa-server-trust-ad",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "freeipa-tests",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "python-ipaclient",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "python-ipalib",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "python-ipaserver",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
},
{
"binary_name": "python-ipatests",
"binary_version": "4.7.0~pre1+git20180411-2ubuntu2"
}
]
}Ubuntu:20.04:LTS
freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/ubuntu/freeipa?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "freeipa-client",
"binary_version": "4.8.6-1ubuntu2"
},
{
"binary_name": "freeipa-client-samba",
"binary_version": "4.8.6-1ubuntu2"
},
{
"binary_name": "freeipa-common",
"binary_version": "4.8.6-1ubuntu2"
},
{
"binary_name": "python3-ipaclient",
"binary_version": "4.8.6-1ubuntu2"
},
{
"binary_name": "python3-ipalib",
"binary_version": "4.8.6-1ubuntu2"
}
]
}Ubuntu:22.04:LTS
freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/ubuntu/freeipa?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "freeipa-client",
"binary_version": "4.9.8-1"
},
{
"binary_name": "freeipa-client-epn",
"binary_version": "4.9.8-1"
},
{
"binary_name": "freeipa-client-samba",
"binary_version": "4.9.8-1"
},
{
"binary_name": "freeipa-common",
"binary_version": "4.9.8-1"
},
{
"binary_name": "python3-ipaclient",
"binary_version": "4.9.8-1"
},
{
"binary_name": "python3-ipalib",
"binary_version": "4.9.8-1"
}
]
}Ubuntu:24.04:LTS
freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/ubuntu/freeipa?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "freeipa-client",
"binary_version": "4.11.1-2"
},
{
"binary_name": "freeipa-client-epn",
"binary_version": "4.11.1-2"
},
{
"binary_name": "freeipa-client-samba",
"binary_version": "4.11.1-2"
},
{
"binary_name": "freeipa-common",
"binary_version": "4.11.1-2"
},
{
"binary_name": "python3-ipaclient",
"binary_version": "4.11.1-2"
},
{
"binary_name": "python3-ipalib",
"binary_version": "4.11.1-2"
}
]
}Ubuntu:25.10
freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/ubuntu/freeipa?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "freeipa-client",
"binary_version": "4.12.4-1"
},
{
"binary_name": "freeipa-client-epn",
"binary_version": "4.12.4-1"
},
{
"binary_name": "freeipa-client-samba",
"binary_version": "4.12.4-1"
},
{
"binary_name": "freeipa-common",
"binary_version": "4.12.4-1"
},
{
"binary_name": "python3-ipaclient",
"binary_version": "4.12.4-1"
},
{
"binary_name": "python3-ipalib",
"binary_version": "4.12.4-1"
}
]
}Ubuntu:26.04:LTS
freeipa
Package
- Name
- freeipa
- Purl
- pkg:deb/ubuntu/freeipa?arch=source&distro=resolute
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "freeipa-client",
"binary_version": "4.13.1-1"
},
{
"binary_name": "freeipa-client-epn",
"binary_version": "4.13.1-1"
},
{
"binary_name": "freeipa-client-samba",
"binary_version": "4.13.1-1"
},
{
"binary_name": "freeipa-common",
"binary_version": "4.13.1-1"
},
{
"binary_name": "python3-ipaclient",
"binary_version": "4.13.1-1"
},
{
"binary_name": "python3-ipalib",
"binary_version": "4.13.1-1"
}
]
}