CVE-2024-52948
Publication date 22 January 2025
Last updated 23 January 2025
Ubuntu priority
Description
[CSRF on 2FA registration]
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| lemonldap-ng | 25.10 questing |
Not affected
|
| 25.04 plucky |
Not affected
|
|
| 24.04 LTS noble |
Needs evaluation
|
|
| 22.04 LTS jammy |
Needs evaluation
|
|
| 20.04 LTS focal |
Needs evaluation
|
|
| 18.04 LTS bionic |
Needs evaluation
|
|
| 16.04 LTS xenial |
Needs evaluation
|
References
Other references
- https://www.cve.org/CVERecord?id=CVE-2024-52948
- https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/3258
- https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/commit/0e69ee17ee7e78569a6f7a3c859105e958d374d4
- https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/commit/d65bd9cb8e9a620f71214d87e937747d7b415999
- https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/commit/9923ed4479b3c71549f9a9660f77dc03331eac30
- https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/commit/dfe9ddc40de982a33fbff42a143ccd1b786de775