[ALSA-2026:36195] Important: 389-ds-base security update
Type:
security
Severity:
important
Release date:
2026-07-08
Description:
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND (CVE-2026-11610) * 389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow (CVE-2026-11774) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 389-ds-base-2.8.0-8.el9_8.aarch64.rpm 86c18780b7eb04b0b0194e7f22c75dd996b87dd4839fed08cfb2124332684f11
aarch64 389-ds-base-devel-2.8.0-8.el9_8.aarch64.rpm 880297aa8ecddb96edd604066e4c7c1ec5bc74ae8af8e4c034b97e6255844bac
aarch64 389-ds-base-libs-2.8.0-8.el9_8.aarch64.rpm ce047584ea728d0a3172904082daf067049f00c0cca1873c589b05252a70407d
aarch64 389-ds-base-snmp-2.8.0-8.el9_8.aarch64.rpm fe3f2bd9df56fbcc8fdde2f08110883df9b966766fed4a09396faff248a75710
noarch python3-lib389-2.8.0-8.el9_8.noarch.rpm 1022a7bcb738465acebfefd3cee5251b0570838eae57563b936e0e86030043a4
ppc64le 389-ds-base-2.8.0-8.el9_8.ppc64le.rpm 2b8a033a85eb106a3509a21e7fb08d3fa8b1259d4562f151bcd670d740e6aaa3
ppc64le 389-ds-base-snmp-2.8.0-8.el9_8.ppc64le.rpm 2c6a7bbbf17c9f97e68e57e2d82613ad808cd60ef935e7e8662d3741d9affe67
ppc64le 389-ds-base-devel-2.8.0-8.el9_8.ppc64le.rpm 3c5b9f59476bff8d76beac4981040ff884774f340b222c07bf8482f019e57b7d
ppc64le 389-ds-base-libs-2.8.0-8.el9_8.ppc64le.rpm 495c9e732144582b258b6def518150484f84d512e3d6ac92c3e8edfa2dda591a
s390x 389-ds-base-snmp-2.8.0-8.el9_8.s390x.rpm 8d1ba716c1d421ac5e70595e6a9a5a372eb6664f15d58bd38a1038e9d9da9632
s390x 389-ds-base-2.8.0-8.el9_8.s390x.rpm 8e6321a1ce2b2008ef79954b224317e12221415dac30966512c8ac7278a359a8
s390x 389-ds-base-libs-2.8.0-8.el9_8.s390x.rpm cd47486de11741ac6b64f6c53f12392f955c01a4b3e6484a87d5ae914f03e3e2
s390x 389-ds-base-devel-2.8.0-8.el9_8.s390x.rpm cf72aeb6fd9b2c481459d338c3cef8ebfb9b1861dc0d4e66ebbb20ee02b7050e
x86_64 389-ds-base-devel-2.8.0-8.el9_8.x86_64.rpm 1f0acbab85d1215734885a1c176f765386643c59bde615e286176136ff44bb7f
x86_64 389-ds-base-libs-2.8.0-8.el9_8.x86_64.rpm 7e20b081ef9400bac6d010585f651d4afaaa1a59fabe7ea652c5c3f00024dd1d
x86_64 389-ds-base-2.8.0-8.el9_8.x86_64.rpm afa7a559f38d3cab6b7d4d4bc5daef3f064e0f2d729102f792d32a2560c3b175
x86_64 389-ds-base-snmp-2.8.0-8.el9_8.x86_64.rpm cec0b482081197af5d328bcc3cfa458435fd282225b9a2e06b81e5da86b85e4a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.