Stay Connected:

ELSA-2014-0292

ELSA-2014-0292 - 389-ds-base security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2014-03-13

Description


[1.2.11.15-32]
- Resolves: bug 1074847 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-6.5.z] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind)


Related CVEs


CVE-2014-0132

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) 389-ds-base-1.2.11.15-32.el6_5.src.rpmdf639401a38ca94c72c0abd1ccbf5732ELBA-2018-2407
389-ds-base-1.2.11.15-32.el6_5.i686.rpm169619eb87686d851111387b9ab0031cELBA-2018-2407
389-ds-base-devel-1.2.11.15-32.el6_5.i686.rpmadd0d5a826cf7e77bdb69b9361212a23ELBA-2018-2407
389-ds-base-libs-1.2.11.15-32.el6_5.i686.rpme569d75f8976511c0be8f0056c2835ceELBA-2018-2407
Oracle Linux 6 (x86_64) 389-ds-base-1.2.11.15-32.el6_5.src.rpmdf639401a38ca94c72c0abd1ccbf5732ELBA-2018-2407
389-ds-base-1.2.11.15-32.el6_5.x86_64.rpm9a566f5108570f9e2f3e2e243e768186ELBA-2018-2407
389-ds-base-devel-1.2.11.15-32.el6_5.i686.rpmadd0d5a826cf7e77bdb69b9361212a23ELBA-2018-2407
389-ds-base-devel-1.2.11.15-32.el6_5.x86_64.rpm812c47047a55e5f4d938995ceb28d66eELBA-2018-2407
389-ds-base-libs-1.2.11.15-32.el6_5.i686.rpme569d75f8976511c0be8f0056c2835ceELBA-2018-2407
389-ds-base-libs-1.2.11.15-32.el6_5.x86_64.rpm5c089c03fb0a3768b6f8a2774cbe188eELBA-2018-2407



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights