Stay Connected:

ELSA-2026-3189

ELSA-2026-3189 - 389-ds-base security update

Type:SECURITY
Impact:MODERATE
Release Date:2026-02-24

Description


[2.7.0-10]
- Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation [rhel-9.7.z]
- Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected [rhel-9.7.z]
- Resolves: RHEL-137083 - CVE-2025-14905 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow [rhel-9.7.z]
- Resolves: RHEL-140088 - Upgrading IDM to latest version: 389-ds-base and ipa-server breaks replication [rhel-9.7.z]
- Resolves: RHEL-150906 - Remove memberof_del_dn_from_groups from MemberOf plugin [rhel-9.7.z]

[2.7.0-9]
- Resolves: RHEL-116425 - RetroCL plugin generates invalid LDIF [rhel-9.7.z]
- Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation [rhel-9.7.z]
- Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected [rhel-9.7.z]
- Resolves: RHEL-123896 - [WebUI] Replication tab crashes after enabling replication as a consumer [rhel-9.7.z]
- Resolves: RHEL-129558 - Online initialization of consumers fails with error -23 [rhel-9.7.z]
- Resolves: RHEL-140088 - Upgrading IDM to latest version: 389-ds-base and ipa-server breaks replication [rhel-9.7.z]
- Resolves: RHEL-142979 - Scalability issue of replication online initialization with large database [rhel-9.7.z]
- Resolves: RHEL-146898 - memory corruption in alias entry plugin [rhel-9.7.z]
- Resolves: RHEL-147211 - Access logs are not getting deleted as configured. [rhel-9.7.z]

[2.7.0-8]
- Resolves: RHEL-111228 - Error showing local password policy on web UI [rhel-9.7.z]
- Resolves: RHEL-117049 - Replication online reinitialization of a large database gets stalled. [rhel-9.7.z]
- Resolves: RHEL-117770 - When the server restarts after a crash, the RFE assumes memberof should be recomputed. It triggers a memberof fixup task, dirsrv became unresponsive. [rhel-9.7.z]
- Resolves: RHEL-123230 - Improve the way to detect asynchronous operations in the access logs [rhel-9.7.z]
- Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation [rhel-9.7.z]
- Resolves: RHEL-123257 - Typo in errors log after a Memberof fixup task. [rhel-9.7.z]
- Resolves: RHEL-123278 - The new ipahealthcheck test ipahealthcheck.ds.backends.BackendsCheck raises CRITICAL issue [rhel-9.7.z]
- Resolves: RHEL-123367 - IPA health check up script shows time skew is over 24 hours [rhel-9.7.z]
- Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected [rhel-9.7.z]
- Resolves: RHEL-123852 - Units for changing MDB max size are not consistent across different tools [rhel-9.7.z]
- Resolves: RHEL-123892 - Improve output dsctl dbverify when backend does not exist [rhel-9.7.z]
- Resolves: RHEL-123896 - [WebUI] Replication tab crashes after enabling replication as a consumer [rhel-9.7.z]
- Resolves: RHEL-123922 - Changelog trimming - add number of scanned entries to the log [rhel-9.7.z]
- Resolves: RHEL-126551 - RHDS 12.6 doesn't handle 'ldapsearch' filter with space char in DN name correctly [rhel-9.7.z]
- Resolves: RHEL-129558 - Online initialization of consumers fails with error -23 [rhel-9.7.z]
- Resolves: RHEL-129579 - Fix paged result search locking [rhel-9.7.z]
- Resolves: RHEL-138480 - Memory leak observed in ns-slapd with 389-ds-base-2.6.1-12 [rhel-9.7.z]
- Resolves: RHEL-140088 - Upgrading IDM to latest version: 389-ds-base and ipa-server breaks replication [rhel-9.7.z]
- Resolves: RHEL-140274 - ipa-healthcheck is complaining about missing or incorrectly configured system indexes. [rhel-9.7.z]


Related CVEs


CVE-2025-14905

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) 389-ds-base-2.7.0-10.el9_7.src.rpm1f78fce4c29d2fcdad0805594c456918ba76a2f8d3103d60ead7a4969359d672-ol9_aarch64_appstream
389-ds-base-2.7.0-10.el9_7.src.rpm1f78fce4c29d2fcdad0805594c456918ba76a2f8d3103d60ead7a4969359d672-ol9_aarch64_codeready_builder
389-ds-base-2.7.0-10.el9_7.aarch64.rpm26faacc241438c3fe23d865d37416be7d20618fa0d0e409918a9df11c4311e29-ol9_aarch64_appstream
389-ds-base-devel-2.7.0-10.el9_7.aarch64.rpm2fe8e63ffe0c34c085f816bd0829f86958914477ec92ffeaf320cfc9874b1ab5-ol9_aarch64_codeready_builder
389-ds-base-libs-2.7.0-10.el9_7.aarch64.rpm76ab15ebab7fc2bb9ae7594248b36df23ff1c0eef9a99031af8c12c3aa24cf3e-ol9_aarch64_appstream
389-ds-base-snmp-2.7.0-10.el9_7.aarch64.rpm3a08a5303f10f78c3701851bfe4cfb70b243ae53537770f206e3ecd182e403ba-ol9_aarch64_appstream
python3-lib389-2.7.0-10.el9_7.noarch.rpm95aff7e0576a8034c0dbee89d619cde4469fad9541226f0748968cc14d0629ab-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) 389-ds-base-2.7.0-10.el9_7.src.rpm1f78fce4c29d2fcdad0805594c456918ba76a2f8d3103d60ead7a4969359d672-ol9_x86_64_appstream
389-ds-base-2.7.0-10.el9_7.src.rpm1f78fce4c29d2fcdad0805594c456918ba76a2f8d3103d60ead7a4969359d672-ol9_x86_64_codeready_builder
389-ds-base-2.7.0-10.el9_7.x86_64.rpm9b5360eba6843503a59fb8fea47c3eea4d7f9ef98e2e05ac55cb479e22a6c2d0-ol9_x86_64_appstream
389-ds-base-devel-2.7.0-10.el9_7.x86_64.rpmbab11afbeba6f8f16d2a085b931b42ab33a5af1fde2344afe73af66f4cf228a4-ol9_x86_64_codeready_builder
389-ds-base-libs-2.7.0-10.el9_7.x86_64.rpmc61707c75896c0125ffa4ab002a8864637e7a7d0fea18a8a7152f877e7578d0e-ol9_x86_64_appstream
389-ds-base-snmp-2.7.0-10.el9_7.x86_64.rpmf5f2768dc51e7925ab61785fadc23fa90ca2bd7ce8e9f271e3ed830bc8ead716-ol9_x86_64_appstream
python3-lib389-2.7.0-10.el9_7.noarch.rpm95aff7e0576a8034c0dbee89d619cde4469fad9541226f0748968cc14d0629ab-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights