Описание
ELSA-2021-2323: 389-ds-base security and bug fix update (MODERATE)
[1.3.10.2-12]
- Bump version to 1.3.10.2-12
[1.3.10.2-11]
- Bump version to 1.3.10.2-11
- Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time
- Resolves: Bug 1931182 - information disclosure during the binding of a DN
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
389-ds-base
1.3.10.2-12.el7_9
389-ds-base-devel
1.3.10.2-12.el7_9
389-ds-base-libs
1.3.10.2-12.el7_9
389-ds-base-snmp
1.3.10.2-12.el7_9
Oracle Linux x86_64
389-ds-base
1.3.10.2-12.el7_9
389-ds-base-devel
1.3.10.2-12.el7_9
389-ds-base-libs
1.3.10.2-12.el7_9
389-ds-base-snmp
1.3.10.2-12.el7_9
Связанные CVE
Связанные уязвимости
When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be used by an unauthenticated attacker to check the existence of an entry in the LDAP database.
When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be used by an unauthenticated attacker to check the existence of an entry in the LDAP database.
When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not. This can be used by an unauthenticated attacker to check the existence of an entry in the LDAP database.
When binding against a DN during authentication, the reply from 389-ds ...
