vault-fips-1.19
Chainguard
Status
Impact
This vulnerability affects HashiCorp Vault versions < 1.20.2 for LDAP MFA enforcement issues. vault-fips-1.19 is a version-streamed FIPS-compliant package maintained for compatibility. Upgrading to 1.20.2 would be a major version upgrade (1.19 → 1.20) which is not appropriate for a security patch in a version-streamed package. Waiting for upstream HashiCorp to backport the fix to the 1.19.x branch.
Status