USN-7146-1
- Source
- https://ubuntu.com/security/notices/USN-7146-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7146-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-7146-1
- Related
- Published
- 2024-12-10T08:54:16.591136Z
- Modified
- 2024-12-10T08:54:16.591136Z
- Summary
- dogtag-pki vulnerabilities
- Details
-
Christina Fu discovered that Dogtag PKI accidentally enabled a mock authentication plugin by default. An attacker could potentially use this flaw to bypass the regular authentication process and trick the CA server into issuing certificates. This issue only affected Ubuntu 16.04 LTS. (CVE-2017-7537)
It was discovered that Dogtag PKI did not properly sanitize user input. An attacker could possibly use this issue to perform cross site scripting and obtain sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2020-25715)
It was discovered that the XML parser did not properly handle entity expansion. A remote attacker could potentially retrieve the content of arbitrary files by sending specially crafted HTTP requests. This issue only affected Ubuntu 16.04 LTS. (CVE-2022-2414)
- References
Affected packages
Ubuntu:Pro:16.04:LTS / dogtag-pki
Package
- Name
- dogtag-pki
- Purl
- pkg:deb/ubuntu/dogtag-pki?arch=src?distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed10.2.6+git20160317-1ubuntu0.1~esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "dogtag-pki"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "dogtag-pki-console-theme"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "dogtag-pki-server-theme"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "libsymkey-java"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "libsymkey-jni"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "libsymkey-jni-dbgsym"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-base"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-ca"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-console"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-javadoc"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-kra"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-ocsp"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-server"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-tks"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-tools"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-tools-dbgsym"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-tps"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-tps-client"
},
{
"binary_version": "10.2.6+git20160317-1ubuntu0.1~esm1",
"binary_name": "pki-tps-client-dbgsym"
}
]
}
Ubuntu:Pro:22.04:LTS / dogtag-pki
Package
- Name
- dogtag-pki
- Purl
- pkg:deb/ubuntu/dogtag-pki?arch=src?distro=esm-apps/jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed11.0.0-1ubuntu0.1~esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "dogtag-pki"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "dogtag-pki-console-theme"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "dogtag-pki-server-theme"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "libsymkey-java"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "libsymkey-jni"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "libsymkey-jni-dbgsym"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-base"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-base-java"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-ca"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-console"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-javadoc"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-kra"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-ocsp"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-server"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-tks"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-tools"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-tools-dbgsym"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-tps"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-tps-client"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "pki-tps-client-dbgsym"
},
{
"binary_version": "11.0.0-1ubuntu0.1~esm1",
"binary_name": "python3-pki-base"
}
]
}