ALSA-2026:26459

[ALSA-2026:26459] Important: 389-ds:1.4 security update

Type:

security

Severity:

important

Release date:

2026-06-22

Description:

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.   

Security Fix(es):  

  * 389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS) (CVE-2026-9064)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	389-ds-base-legacy-tools-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.aarch64.rpm	469b698bc3e4851057428cc827f09eb4a3edb071e93e58c00214b36fe24f58a5
aarch64	389-ds-base-libs-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.aarch64.rpm	68434fff3bcd543fcb051ff43c16063e75a975de0fd8eb37305cc0aefdd937dd
aarch64	389-ds-base-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.aarch64.rpm	745b631682f714fb592246b9805a7a8c056f4e7ee489cb5e737e107f284cd39b
aarch64	389-ds-base-devel-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.aarch64.rpm	7d4b4ae07bb8602e076d8fa451805d82a733a36b30c9ea7e5d110292f0da0266
aarch64	389-ds-base-snmp-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.aarch64.rpm	c55ad10f2c47171766f7a20bbabbf126b613ee7318ec9b9ff267a8580d553633
noarch	python3-lib389-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.noarch.rpm	b6fd5339ee66bac7e5e21573630fa29b8073187072e49d92c63126afb01fcae6
ppc64le	389-ds-base-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.ppc64le.rpm	0eed24ed4380eaca455b2d8fa0d900d5cdd700c73d0cb8808cde91746a458e0a
ppc64le	389-ds-base-devel-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.ppc64le.rpm	2a090cdabdacbe7591b9160ba4a2852b57ba11ecf4391a6b09c454747594309b
ppc64le	389-ds-base-libs-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.ppc64le.rpm	4dbf63c97263246ed9bee59647471a3d3c64e0fd1315257de9f173265cc9ea89
ppc64le	389-ds-base-legacy-tools-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.ppc64le.rpm	b601feed9525cfbe9d911e3fbc61906bfdde16cfb7c6e3531cf53536b879f5e0
ppc64le	389-ds-base-snmp-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.ppc64le.rpm	e3614b1fc950c6d55ec804e9a54acc8c9e9394e037a39805b81d00d0f88585c3
s390x	389-ds-base-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.s390x.rpm	035dfc1b4edef788a2447e9142ff4400d5b3b878b53ecce319683f0fc09d54cf
s390x	389-ds-base-snmp-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.s390x.rpm	15af13d1fc49cd761d1253c3c4b51d09927c4242d5b21c46d38d84730d8fadf0
s390x	389-ds-base-legacy-tools-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.s390x.rpm	8e31d655295e03d46eb0b61a4291d58fa3c59102a1504e6101dd52a1b0d0c469
s390x	389-ds-base-devel-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.s390x.rpm	d47bca006b3d8a7bfe380432579dedce5a4b9181879ac4a169042e9204aa9f5b
s390x	389-ds-base-libs-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.s390x.rpm	e6672c6f717c728ace7cddd4cf7e26ce0ced2eaf18c7e044448a3234cf6aad2e
x86_64	389-ds-base-snmp-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.x86_64.rpm	32ef7ece3299d3460705781b141202b423ac26decf029bc539741950fe728168
x86_64	389-ds-base-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.x86_64.rpm	a5c88f12254bf8290b4f80a22c2e81c49678edd5e08fa5f294642ed6db5e67b2
x86_64	389-ds-base-legacy-tools-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.x86_64.rpm	c779826422e109e84d86629294f4fb17bc9081f7b4f08b8311fa8a56dff4224d
x86_64	389-ds-base-libs-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.x86_64.rpm	d95f76b86b42e09f32cc8aa97ab68023a1e2f7affd3c1ab5384b306d07afdbf1
x86_64	389-ds-base-devel-1.4.3.39-24.module_el8.10.0+4196+be88fbc7.x86_64.rpm	fc9c79123b5e71e968e36baeeb721f04b18f90de1a6d74ef0ace6925fa71a392

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.