Описание
Security update for 389-ds
This update for 389-ds fixes the following issues:
-
CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119).
-
Update to version 2.0.16~git56.d15a0a7.
-
Failure to migrate from openldap if pwdPolicyChecker present (bsc#1205146).
-
Resolve issue with checklist post migration when dds is present (bsc#1204748).
-
Improve reliability of migrations from openldap when dynamic directory services is configured (bsc#1204493).
Список пакетов
SUSE Linux Enterprise Module for Server Applications 15 SP3
389-ds-1.4.4.19~git59.136fc84-150300.3.27.1
389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1
lib389-1.4.4.19~git59.136fc84-150300.3.27.1
libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1
openSUSE Leap 15.3
389-ds-1.4.4.19~git59.136fc84-150300.3.27.1
389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1
389-ds-snmp-1.4.4.19~git59.136fc84-150300.3.27.1
lib389-1.4.4.19~git59.136fc84-150300.3.27.1
libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1
Ссылки
- Link for SUSE-SU-2022:4124-1
- E-Mail link for SUSE-SU-2022:4124-1
- SUSE Security Ratings
- SUSE Bug 1194119
- SUSE Bug 1204493
- SUSE Bug 1204748
- SUSE Bug 1205146
- SUSE CVE CVE-2021-45710 page
Описание
An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. In certain circumstances involving a closed oneshot channel, there is a data race and memory corruption.
Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-1.4.4.19~git59.136fc84-150300.3.27.1
SUSE Linux Enterprise Module for Server Applications 15 SP3:389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1
SUSE Linux Enterprise Module for Server Applications 15 SP3:lib389-1.4.4.19~git59.136fc84-150300.3.27.1
SUSE Linux Enterprise Module for Server Applications 15 SP3:libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1
Ссылки
- CVE-2021-45710
- SUSE Bug 1194119