IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-23 07:33:27 -06:00
Code Issues Packages Projects Releases Wiki Activity
557f0a5639
freeipa/ipalib
History
Rob Crittenden 33af154b7f validate_principal: Don't try to verify that the realm is known 
The actual value is less important than whether it matches the
regular expression. A number of legal but difficult to know in
context realms could be passed in here (trust for example).

This fixes CVE-2024-1481

Fixes: https://pagure.io/freeipa/issue/9541

Signed-off-by: Rob Crittenden <rcritten@redhat.com>
Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
2024-02-22 14:35:59 -05:00
..
install validate_principal: Don't try to verify that the realm is known 2024-02-22 14:35:59 -05:00
__init__.py Add context manager to ipalib.API 2023-09-29 12:57:06 +02:00
aci.py De-duplicate ACI attributes and permissions 2020-09-14 09:15:59 +03:00
backend.py pylint: remove unneeded disable=unused-private-member 2023-01-10 08:30:58 +01:00
base.py pylint: fix errors 2024-01-09 08:40:47 +01:00
capabilities.py Support AES for KRA archival wrapping 2022-03-16 12:07:01 +02:00
cli.py pylint: Fix useless-suppression 2022-03-11 13:37:08 -05:00
config.py Add 'cache_dir' option to api.env 2023-12-01 09:46:31 +01:00
constants.py Add 'cache_dir' option to api.env 2023-12-01 09:46:31 +01:00
crud.py ipalib, ipaserver: fix incorrect API.register calls in docstrings 2016-05-25 16:06:26 +02:00
dns.py dnsrecord-mod: allow to modify ttl without passing the record 2019-07-01 09:16:21 +02:00
errors.py rpcserver: fix exception handling for FAST armor failure 2020-10-30 19:06:11 +02:00
facts.py Fall back to old server installation detection when needed 2020-08-18 11:11:26 +02:00
frontend.py pylint: Fix cyclic-import 2023-01-10 08:30:58 +01:00
krb_utils.py krb_utils: Simplify get_credentials 2021-06-12 11:19:25 +03:00
Makefile.am Build: Makefiles for Python packages 2016-11-09 13:08:32 +01:00
messages.py Warn for permissions with read/write/search/compare and no attrs 2022-07-15 16:59:15 +02:00
misc.py plugins: Don't treat keys of api as bytes 2021-06-28 14:16:56 +03:00
output.py Generate same API.txt under Python 2 and 3 2018-02-15 09:41:30 +01:00
parameters.py Use datetime.timezone.utc instead of newer datetime.UTC alias 2023-09-29 15:06:33 -04:00
pkcs10.py Change FreeIPA references to IPA and Identity Management 2021-01-21 13:51:45 +01:00
plugable.py pylint: remove unneeded disable=unused-private-member 2023-01-10 08:30:58 +01:00
request.py Py3: Remove subclassing from object 2018-09-27 11:49:04 +02:00
rpc.py Use datetime.timezone.utc instead of newer datetime.UTC alias 2023-09-29 15:06:33 -04:00
setup.cfg Port all setup.py to setuptools 2016-10-20 18:43:37 +02:00
setup.py Use ssl.match_hostname from urllib3 as it was removed from Python 3.12 2023-07-19 08:27:30 +02:00
sysrestore.py pylint: Fix consider-using-dict-items 2022-03-11 13:37:08 -05:00
text.py pylint: Fix useless-suppression 2022-03-11 13:37:08 -05:00
util.py IPA API changes to support RBCD 2023-04-05 14:55:22 -04:00
x509.py Compatibility fix for PyCA cryptography 42.0.0 2024-01-24 14:54:24 +01:00