SUSE-SU-2022:3029-1 -- SLES 389-ds, lib389, libsvrcore0ID: oval:org.secpod.oval:def:89047602 | Date: (C)2022-11-04 (M)2023-08-16 |
Class: PATCH | Family: unix |
This update for 389-ds fixes the following issues: - CVE-2022-2850: Fixed an application crash when running a sync_repl client that could be triggered via a malformed cookie . Non-security fixes: - Update to version 1.4.4.19~git46.c900a28c8: * CI - makes replication/acceptance_test.py::test_modify_entry more robust * UI - LDAP Editor is not updated when we switch instances - Improvements to openldap import with password policy present - Update to version 1.4.4.19~git43.8ba2ea21f: * fix covscan * BUG - pid file handling * Memory leak in slapi_ldap_get_lderrno * Need a compatibility option about sub suffix handling * Release tarballs don"t contain cockpit webapp * Replication broken after password change * Harden ReplicationManager.wait_for_replication * dscontainer: TypeError: unsupported operand type for /: "str" and "int" * CLI - dsconf backend export breaks with multiple backends * CLI - improve task handling
Platform: |
SUSE Linux Enterprise Server 15 SP3 |
Product: |
389-ds |
lib389 |
libsvrcore0 |