Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2022-0889

Опубликовано: 16 мар. 2022
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2022-0889: 389-ds:1.4 security and bug fix update (LOW)

[1.4.3.23-14]

  • Bump version to 1.4.3.23-14
  • Resolves: Bug 2059893 - Paged search lookthroughlimit counter doesnt take read ahead into account
  • Resolves: Bug 2060106 - Based on 1944494 (RFC 4530 entryUUID attribute) - plugin entryuuid failing
  • Resolves: Bug 2060110 - double-free of the virtual attribute context in persistent search

[1.4.3.23-13]

  • Bump version to 1.4.3.23-13
  • Resolves: Bug 2056488 - Paged search lookthroughlimit counter doesnt take read ahead into account
  • Resolves: Bug 2047166 - Based on 1944494 (RFC 4530 entryUUID attribute) - plugin entryuuid failing
  • Resolves: Bug 2056481 - double-free of the virtual attribute context in persistent search

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module 389-ds:1.4 is enabled

389-ds-base

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-devel

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-legacy-tools

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-libs

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-snmp

1.4.3.23-14.module+el8.5.0+20517+748852bc

python3-lib389

1.4.3.23-14.module+el8.5.0+20517+748852bc

Oracle Linux x86_64

Module 389-ds:1.4 is enabled

389-ds-base

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-devel

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-legacy-tools

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-libs

1.4.3.23-14.module+el8.5.0+20517+748852bc

389-ds-base-snmp

1.4.3.23-14.module+el8.5.0+20517+748852bc

python3-lib389

1.4.3.23-14.module+el8.5.0+20517+748852bc

Связанные CVE

CVE-2021-4091

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2021-4091

CVSS3: 7.5
ubuntu
почти 4 года назад

A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.

redhat логотип

CVE-2021-4091

CVSS3: 7.5
redhat
около 4 лет назад

A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.

nvd логотип

CVE-2021-4091

CVSS3: 7.5
nvd
почти 4 года назад

A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.

debian логотип

CVE-2021-4091

CVSS3: 7.5
debian
почти 4 года назад

A double-free was found in the way 389-ds-base handles virtual attribu ...

rocky логотип

RLSA-2022:0889

rocky
почти 4 года назад

Low: 389-ds:1.4 security and bug fix update