Описание
ELSA-2024-5192: 389-ds-base security update (MODERATE)
[2.4.5-9]
- Bump version to 2.4.5-9
- Resolves: RHEL-44323 - unauthenticated user can trigger a DoS by sending a specific extended search request
- Resolves: RHEL-40945 - Malformed userPassword hash may cause Denial of Service
- Resolves: RHEL-49457 - perf search result investigation for many large static groups and members
- Resolves: RHEL-49459 - subsuffix are not returned in one level scoped search
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
389-ds-base
2.4.5-9.el9_4
389-ds-base-devel
2.4.5-9.el9_4
389-ds-base-libs
2.4.5-9.el9_4
python3-lib389
2.4.5-9.el9_4
Oracle Linux x86_64
389-ds-base
2.4.5-9.el9_4
389-ds-base-devel
2.4.5-9.el9_4
389-ds-base-libs
2.4.5-9.el9_4
python3-lib389
2.4.5-9.el9_4
Связанные CVE
Связанные уязвимости
A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of service.
A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of service.
A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of service.
A flaw was found in the 389 Directory Server. This flaw allows an unau ...