GSA-6366-1: SOGo Security Update – Immediate Action Required
Gnoppix Security has released a critical update for SOGo, the groupware server. This patch addresses a vulnerability that could allow an attacker to bypass authentication.
Who is affected? All users of SOGo on Gnoppix 23/25 (bookworm) and Gnoppix 25 (trixie).
What is the flaw? A security issue was discovered in how SOGo handles user sessions. An attacker can exploit this to gain unauthorized access to accounts without a valid password.
What to do: Update your SOGo packages immediately to version 5.11.2-1+deb12u1 or later. No workarounds are available.
Critical: This authentication bypass is a high-severity risk. Unpatched systems are vulnerable to complete account compromise.
Affected Versions
- Gnoppix 23/25 (bookworm): Update to version 5.11.2-1+deb12u1.
- Gnoppix 25 (trixie): Update to version 5.11.2-1.
Background
SOGo is a modern, scalable groupware server used for calendars, contacts, and email. The flaw lies within the session management component, specifically during the login process. This allows the bypass of standard credential checks. For detailed technical information, refer to the upstream changelog specific to this version. - Please update your systems.