Описание
ELSA-2024-6569: 389-ds:1.4 security update (MODERATE)
[1.4.3.39-8]
- Bump version to 1.4.3.39-8
- Resolves: RHEL-40943 - CVE-2024-5953 389-ds:1.4/389-ds-base: Malformed userPassword hash may cause Denial of Service [rhel-8.10.z]
- Resolves: RHEL-58069 - perf search result investigation for many large static groups and members [rhel-8.10.0.z]
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module 389-ds:1.4 is enabled
389-ds-base
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-devel
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-legacy-tools
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-libs
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-snmp
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
python3-lib389
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
Oracle Linux x86_64
Module 389-ds:1.4 is enabled
389-ds-base
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-devel
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-legacy-tools
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-libs
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
389-ds-base-snmp
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
python3-lib389
1.4.3.39-8.module+el8.10.0+90403+39ad56f1
Связанные CVE
Связанные уязвимости
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
A denial of service vulnerability was found in the 389-ds-base LDAP se ...
