Описание
ELSA-2024-3047: 389-ds:1.4 security update (MODERATE)
[1.4.3.39-3]
- Bump version to 1.4.3.39-3
- Resolves: RHEL-19240 - RFE Add PROXY protocol support to 389-ds-base via confiuration item - similar to Postfix
[1.4.3.39-2]
- Bump version to 1.4.3.39-2
- Resolves: RHEL-23209 - CVE-2024-1062 389-ds:1.4/389-ds-base: a heap overflow leading to denail-of-servce while writing a value larger than 256 chars (in log_entry_attr)
- Resolves: RHEL-5390 - schema-compat-plugin expensive with automember rebuild
- Resolves: RHEL-5135 - crash in sync_update_persist_op() of content sync plugin
[1.4.3.39-1]
- Bump version to 1.4.3.39-1
- Resolves: RHEL-19028 - Rebase 389-ds-base in RHEL 8.10 to 1.4.3.39
- Resolves: RHEL-19240 - [RFE] Add PROXY protocol support to 389-ds-base
- Resolves: RHEL-5143 - SELinux labeling for dirsrv files seen during ipa install/uninstall should be moved to DEBUG.
- Resolves: RHEL-5107 - bdb_start - Detected Disorderly Shutdown directory server is not starting
- Resolves: RHEL-16338 - ns-slapd crash in slapi_attr_basetype
- Resolves: RHEL-14025 - After an upgrade the LDAP server won't start if nsslapd-conntablesize is present in the dse.ldif file.
[1.4.3.38-1]
- Bump version to 1.4.3.38-1
- Resolves: RHEL-19028 - Rebase 389-ds-base in RHEL 8.10 to 1.4.3.38
[1.4.3.37-1]
- Bump versionto 1.4.3.37-1
- Resolves: rhbz#2224505 - Paged search impacts performance
- Resolves: rhbz#2220890 - healthcheck tool needs to be updates for new default password storage scheme
- Resolves: rhbz#2218235 - python3-lib389: Python tarfile extraction needs change to avoid a warning
- Resolves: rhbz#2210491 - dtablesize being set to soft maxfiledescriptor limit causing massive slowdown in large enviroments.
- Resolves: rhbz#2149967 - SELinux labeling for dirsrv files seen during ipa install/uninstall should be moved to DEBUG
[1.4.3.36-2]
- Bump version to 1.4.3.36-2
- Resolves: rhbz#2220890 - healthcheck tool needs to be updates for new default password storage scheme
[1.4.3.36-1]
- Bump version to 1.4.3.36-1
- Resolves: rhbz#2188628 - Rebase 389-ds-base in RHEL 8.9 to 1.4.3.36
[1.4.3.35-1]
- Bump version to 1.4.3.35-1
- Resolves: rhbz#2188628 - Rebase 389-ds-base in RHEL 8.9 to 1.4.3.35
[1.4.3.32-1]
- Bump version to 1.4.3.32-1
- Resolves: Bug 2098138 - broken nsslapd-subtree-rename-switch option in rhds11
- Resolves: Bug 2119063 - entryuuid fixup tasks fails because entryUUID is not mutable
- Resolves: Bug 2136610 - [RFE] Add 'cn' attribute to IPA audit logs
- Resolves: Bug 2142638 - pam mutex lock causing high etimes, affecting red hat internal sso
- Resolves: Bug 2096795 - [RFE] Support ECDSA private keys for TLS
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module 389-ds:1.4 is enabled
389-ds-base
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-devel
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-legacy-tools
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-libs
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-snmp
1.4.3.39-3.module+el8.10.0+90328+4f014c15
python3-lib389
1.4.3.39-3.module+el8.10.0+90328+4f014c15
Oracle Linux x86_64
Module 389-ds:1.4 is enabled
389-ds-base
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-devel
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-legacy-tools
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-libs
1.4.3.39-3.module+el8.10.0+90328+4f014c15
389-ds-base-snmp
1.4.3.39-3.module+el8.10.0+90328+4f014c15
python3-lib389
1.4.3.39-3.module+el8.10.0+90328+4f014c15
Связанные CVE
Связанные уязвимости
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
A heap overflow flaw was found in 389-ds-base. This issue leads to a d ...
