UBUNTU-CVE-2026-12804

Source
https://ubuntu.com/security/CVE-2026-12804
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-12804
Upstream
  • CVE-2026-12804
Published
2026-06-21T19:16:00Z
Modified
2026-06-24T11:01:27.533032351Z
Severity
  • 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N CVSS Calculator
  • 2.1 (Low) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

A vulnerability was detected in lemonldap-ng up to 2.23.0. Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.pm of the component SAML Common Domain Cookie Endpoint. Performing a manipulation of the argument url results in open redirect. The attack is possible to be carried out remotely. The exploit is now public and may be used. Applying a patch is the recommended action to fix this issue. The vendor confirms, that "it has been fixed some days ago and will be available in 2.23.1. CDC is quite never used, so the impact is very low."

References

Affected packages

Ubuntu:16.04:LTS
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.3.3-1
1.4.6-1
1.4.6-2
1.4.6-3

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "1.4.6-3"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "1.4.6-3"
        },
        {
            "binary_name": "liblemonldap-ng-conf-perl",
            "binary_version": "1.4.6-3"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "1.4.6-3"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "1.4.6-3"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "1.4.6-3"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"
Ubuntu:18.04:LTS
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.9.10-1
1.9.13-2
1.9.14-1
1.9.15-1
1.9.16-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "1.9.16-2"
        },
        {
            "binary_name": "lemonldap-ng-fastcgi-server",
            "binary_version": "1.9.16-2"
        },
        {
            "binary_name": "lemonldap-ng-handler",
            "binary_version": "1.9.16-2"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "1.9.16-2"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "1.9.16-2"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "1.9.16-2"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "1.9.16-2"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"
Ubuntu:20.04:LTS
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.0.5+ds-2
2.0.6+ds-2
2.0.7+ds-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "lemonldap-ng-fastcgi-server",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "lemonldap-ng-handler",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "lemonldap-ng-uwsgi-app",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "2.0.7+ds-2"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "2.0.7+ds-2"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"
Ubuntu:22.04:LTS
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.0.11+ds-4
2.0.13+ds-3
2.0.13+ds-3ubuntu1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "lemonldap-ng-fastcgi-server",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "lemonldap-ng-handler",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "lemonldap-ng-uwsgi-app",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "2.0.13+ds-3ubuntu1"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "2.0.13+ds-3ubuntu1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"
Ubuntu:24.04:LTS
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.16.2+ds-1
2.17.1+ds-1
2.17.2+ds-1
2.17.2+ds-2
2.18.1+ds-1
2.18.2+ds-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "lemonldap-ng-fastcgi-server",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "lemonldap-ng-handler",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "lemonldap-ng-uwsgi-app",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "2.18.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-ssoaas-apache-client-perl",
            "binary_version": "2.18.2+ds-1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"
Ubuntu:25.10
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.20.2+ds-1build1
2.21.0+ds-3

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "lemonldap-ng-fastcgi-server",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "lemonldap-ng-handler",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "lemonldap-ng-uwsgi-app",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "2.21.0+ds-3"
        },
        {
            "binary_name": "liblemonldap-ng-ssoaas-apache-client-perl",
            "binary_version": "2.21.0+ds-3"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"
Ubuntu:26.04:LTS
lemonldap-ng

Package

Name
lemonldap-ng
Purl
pkg:deb/ubuntu/lemonldap-ng?arch=source&distro=resolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*
2.21.0+ds-3
2.22.0+ds-2
2.22.1+ds-1
2.22.2+ds-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "lemonldap-ng",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "lemonldap-ng-fastcgi-server",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "lemonldap-ng-handler",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "lemonldap-ng-uwsgi-app",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-common-perl",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-handler-perl",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-manager-perl",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-portal-perl",
            "binary_version": "2.22.2+ds-1"
        },
        {
            "binary_name": "liblemonldap-ng-ssoaas-apache-client-perl",
            "binary_version": "2.22.2+ds-1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-12804.json"