[ALSA-2024:3837] Important: 389-ds-base security update
Type:
security
Severity:
important
Release date:
2024-06-14
Description:
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request (CVE-2024-3657) * 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c (CVE-2024-2199) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 389-ds-base-devel-2.4.5-8.el9_4.aarch64.rpm 084dc1ebc5e8c7c19a509e104be0b17715f1763d1e86d7320f256def5bfa72be
aarch64 389-ds-base-2.4.5-8.el9_4.aarch64.rpm 529886fd0edaaece46c1e3ee31a4ba096af6a5ba7e2b3e5b214f0d342bf96886
aarch64 389-ds-base-libs-2.4.5-8.el9_4.aarch64.rpm 5e47a84a8732b226add7c1d7245b80273dc699a37d72a30cf96c93aff4fb57b1
noarch python3-lib389-2.4.5-8.el9_4.noarch.rpm 13a71cd517eeffda1384aa1a720f66dafe47f1f2d381a2f852010d50b9d829aa
ppc64le 389-ds-base-2.4.5-8.el9_4.ppc64le.rpm 68e8bb19289ed67e23392626626a8f965b344d524ff52ad5678f4ea081c5fca4
ppc64le 389-ds-base-devel-2.4.5-8.el9_4.ppc64le.rpm 9a7baba9fbee59a744a7f1ac2e65d3f56b44ab6333c46451e37d7da96057906c
ppc64le 389-ds-base-libs-2.4.5-8.el9_4.ppc64le.rpm b4b49010ab96f5ff6a273567ea4050977a1536c3c6cb29977a93cbcc12bbae54
s390x 389-ds-base-2.4.5-8.el9_4.s390x.rpm 346ac74217f783d72d897610316d4b4211c25539fb7bec443305e7e678618c6b
s390x 389-ds-base-devel-2.4.5-8.el9_4.s390x.rpm 9d3cb10dc814d7e80e7ad5747c47f666e9cf259e110b460aabf7acb7bf951fd6
s390x 389-ds-base-libs-2.4.5-8.el9_4.s390x.rpm 9e2c5a8cefc468c41955f1d424d4fe22bf16ba56d4b7dfe911f5b462cd2c7de6
x86_64 389-ds-base-devel-2.4.5-8.el9_4.x86_64.rpm 812c9b72d1e358437a2255567e38772b87b0164d1e79dba3bdf2f7c67bb43ba2
x86_64 389-ds-base-libs-2.4.5-8.el9_4.x86_64.rpm 8589fbaeff803fdd82376b3116b5b23ddc0bd70f4730ff80f07e844c78b0f799
x86_64 389-ds-base-2.4.5-8.el9_4.x86_64.rpm a881e73e5afbbc95cb8fdffdd72011bab6e297cbb0c159cad546c623dd346c42
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.