ELSA-2018-2757

Опубликовано: 25 сент. 2018

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2018-2757: 389-ds-base security and bug fix update (MODERATE)

[1.3.7.5-28]

Bump version to 1.3.7.5-28
Resolves: Bug 1628676 - 389-ds-base: race condition on reference counter leads to DoS using persistent search
Resolves: Bug 1628677 - Crash in delete_passwdPolicy when persistent search connections are terminated unexpectedly

[1.3.7.5-27]

Bump version to 1.3.7.5-27
Resolves: Bug 1623247 - Crash in vslapd_log_emergency_error

[1.3.7.5-26]

Bump version to 1.3.7.5-26
Resolves: Bug 1615924 - Fine grained password policy can impact search performance
Resolves: Bug 1614836 - Disable nunc-stans by default
Resolves: Bug 1614861 - ldapsearch with server side sort crashes the ldap server

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

389-ds-base

1.3.7.5-28.el7_5

389-ds-base-devel

1.3.7.5-28.el7_5

389-ds-base-libs

1.3.7.5-28.el7_5

389-ds-base-snmp

1.3.7.5-28.el7_5

Oracle Linux x86_64

389-ds-base

1.3.7.5-28.el7_5

389-ds-base-devel

1.3.7.5-28.el7_5

389-ds-base-libs

1.3.7.5-28.el7_5

389-ds-base-snmp

1.3.7.5-28.el7_5

Связанные CVE

Ссылки на источники

Связанные уязвимости

openSUSE-SU-2019:1397-1

suse-cvrf

больше 6 лет назад

Security update for 389-ds

SUSE-SU-2019:1207-2

suse-cvrf

больше 6 лет назад

Security update for 389-ds

SUSE-SU-2019:1207-1

suse-cvrf

больше 6 лет назад

Security update for 389-ds

SUSE-SU-2019:2155-1

suse-cvrf

больше 6 лет назад

Security update for 389-ds

CVE-2018-10935

CVSS3: 6.5

ubuntu

около 7 лет назад

A flaw was found in the 389 Directory Server that allows users to cause a crash in the LDAP server using ldapsearch with server side sort.