389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. Security Fix: * 389-ds-base: sync_repl NULL pointer dereference in sync_create_state_control For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * ACIs are being evaluated against the Replication Manager account in a replication context. * A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule * Large updates can reset the CLcache to the beginning of the changelog * Changelog cache can upload updates from a wrong starting point