Candidate: CVE-2016-9575
PublicDate: 2018-03-13 13:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9575
 https://bugzilla.redhat.com/show_bug.cgi?id=1395311
Description:
 Ipa versions 4.2.x, 4.3.x before 4.3.3 and 4.4.x before 4.4.3 did not
 properly check the user's permissions while modifying certificate profiles
 in IdM's certprofile-mod command. An authenticated, unprivileged attacker
 could use this flaw to modify profiles to issue certificates with arbitrary
 naming or key usage information and subsequently use such certificates for
 other attacks.
Ubuntu-Description:
 It was discovered that FreeIPA incorrectly handled user's permissions. An
 authenticated attacker could possibly use this issue to modify other user's
 profiles or other unspecified impact.
Notes:
Bugs:
Priority: medium
Discovered-by: Liam Campbell
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L [6.3 MEDIUM]

Patches_freeipa:
upstream_freeipa: needs-triage
precise_freeipa: ignored (reached end-of-life)
precise/esm_freeipa: DNE (precise was needs-triage)
trusty_freeipa: not-affected (code not present)
trusty/esm_freeipa: not-affected (code not present)
vivid/stable-phone-overlay_freeipa: DNE
vivid/ubuntu-core_freeipa: DNE
xenial_freeipa: ignored (end of standard support, was needed)
yakkety_freeipa: ignored (reached end-of-life)
zesty_freeipa: ignored (reached end-of-life)
artful_freeipa: ignored (reached end-of-life)
bionic_freeipa: not-affected (4.4.4-1)
cosmic_freeipa: not-affected (4.4.4-1)
disco_freeipa: not-affected (4.4.4-1)
eoan_freeipa: not-affected (4.4.4-1)
focal_freeipa: not-affected (4.4.4-1)
groovy_freeipa: not-affected (4.4.4-1)
hirsute_freeipa: not-affected (4.4.4-1)
impish_freeipa: not-affected (4.4.4-1)
jammy_freeipa: not-affected (4.4.4-1)
devel_freeipa: not-affected (4.4.4-1)