RHSA-2019:3981-01 -- Redhat 389-ds-baseID: oval:org.secpod.oval:def:503457 | Date: (C)2019-11-28 (M)2023-05-02 |
Class: PATCH | Family: unix |
389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. Security Fix: * 389-ds-base: Read permission check bypass via the deref plugin For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * DB Deadlock on modrdn appears to corrupt database and entry cache * After audit log file is rotated, DS version string is logged after each update * Extremely slow LDIF import with ldif2db * ns-slapd crash on concurrent SASL BINDs, connection_call_io_layer_callbacks must hold hold c_mutex * CleanAllRUV task limit not enforced
Platform: |
Red Hat Enterprise Linux 7 |