Описание
Security update for 389-ds
This update for 389-ds fixes the following issues:
-
CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119).
-
Update to version 2.0.16~git56.d15a0a7:
-
Failure to migrate from openldap if pwdPolicyChecker present (bsc#1205146).
-
Resolve issue with checklist post migration when dds is present (bsc#1204748).
-
Improve reliability of migrations from openldap when dynamic directory services is configured (bsc#1204493).
Список пакетов
Container suse/389-ds:latest
389-ds-2.0.16~git56.d15a0a7-150400.3.15.1
lib389-2.0.16~git56.d15a0a7-150400.3.15.1
libsvrcore0-2.0.16~git56.d15a0a7-150400.3.15.1
SUSE Linux Enterprise Module for Server Applications 15 SP4
389-ds-2.0.16~git56.d15a0a7-150400.3.15.1
389-ds-devel-2.0.16~git56.d15a0a7-150400.3.15.1
lib389-2.0.16~git56.d15a0a7-150400.3.15.1
libsvrcore0-2.0.16~git56.d15a0a7-150400.3.15.1
openSUSE Leap 15.4
389-ds-2.0.16~git56.d15a0a7-150400.3.15.1
389-ds-devel-2.0.16~git56.d15a0a7-150400.3.15.1
389-ds-snmp-2.0.16~git56.d15a0a7-150400.3.15.1
lib389-2.0.16~git56.d15a0a7-150400.3.15.1
libsvrcore0-2.0.16~git56.d15a0a7-150400.3.15.1
Ссылки
- Link for SUSE-SU-2022:3996-1
- E-Mail link for SUSE-SU-2022:3996-1
- SUSE Security Ratings
- SUSE Bug 1194119
- SUSE Bug 1204493
- SUSE Bug 1204748
- SUSE Bug 1205146
- SUSE CVE CVE-2021-45710 page
Описание
An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. In certain circumstances involving a closed oneshot channel, there is a data race and memory corruption.
Затронутые продукты
Container suse/389-ds:latest:389-ds-2.0.16~git56.d15a0a7-150400.3.15.1
Container suse/389-ds:latest:lib389-2.0.16~git56.d15a0a7-150400.3.15.1
Container suse/389-ds:latest:libsvrcore0-2.0.16~git56.d15a0a7-150400.3.15.1
SUSE Linux Enterprise Module for Server Applications 15 SP4:389-ds-2.0.16~git56.d15a0a7-150400.3.15.1
Ссылки
- CVE-2021-45710
- SUSE Bug 1194119