ELSA-2018-3127

ELSA-2018-3127 - 389-ds-base security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2018-11-05

Description


[1.3.8.4-15]
- Bump version to 1.3.8.4-15
- Resolves: Bug 1624004 - Fix regression in last patch

[1.3.8.4-14]
- Bump version to 1.3.8.4-14
- Resolves: Bug 1624004 - potential denial of service attack

[1.3.8.4-13]
- Bump version to 1.3.8.4-13
- Resolves: Bug 1623949 - Crash in delete_passwdPolicy when persistent search connections are terminated unexpectedly

[1.3.8.4-12]
- Bump version to 1.3.8.4-12
- Resolves: Bug 1616412 - filter optimization fix causes regression(fix reverted)

[1.3.8.4-11]
- Bump version to 1.3.8.4-11
- Resolves: Bug 1614820 - Server crash through modify command with large DN

[1.3.8.4-10]
- Bump verison to 1.3.8.4-10
- Resolves: Bug 1614501 - Disable nunc-stans by default
- Resolves: Bug 1607078 - ldapsearch with server side sort crashes the ldap server

[1.3.8.4-9]
- Bump version to 1.3.8.4-9
- Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user 'dirsrv' if there is an already existing user with the UID/GID 389 on the machine.

[1.3.8.4-8]
- Bump version to 1.3.8.4-8
- Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user 'dirsrv' if there is an already existing user with the UID/GID 389 on the machine.

[1.3.8.4-7]
- Bump version to 1.3.8.4-7
- Resolves: Bug 1595766 - backout this fix for now because it breaks FreeIPA (removed patch file all together)

[1.3.8.4-6]
- Bump version to 1.3.8.4-6
- Resolves: Bug 1595766 - backout this fix for now because it breaks FreeIPA

[1.3.8.4-5]
- Bump version to 1.3.8.4-5
- Resolves: Bug 1595766 - CVE-2018-10871 389-ds-base: replication and the Retro Changelog plugin store plaintext password by default

[1.3.8.4-4]
- Bump version to 1.3.8.4-4
- Resolves: Bug 1597384 - Async operations can hang when the server is running nunc-stans
- Resolves: Bug 1598186 - A search with the scope 'one' returns a non-matching entry
- Resolves: Bug 1598718 - import fails if backend name is 'default'
- Resolves: Bug 1598478 - If a replica is created with a bindDNGroup, this group is taken into account only after bindDNGroupCheckInterval seconds
- Resolves: Bug 1525256 - Invalid SNMP MIB for 389 DS
- Resolves: Bug 1597518 - ds-replcheck command returns traceback errors against ldif files having garbage content when run in offline mode

[1.3.8.4-3]
- Bump version to 1.3.8.4-3
- Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user 'dirsrv' if there is an already existing user with the UID/GID 389 on the machine.

[1.3.8.4-2]
- Bump version to 1.3.8.4-2
- Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user 'dirsrv' if there is an already existing user with the UID/GID 389 on the machine.

[1.3.8.4-1]
- Bump version to 1.3.8.4-1
- Resolves: Bug 1560653 - Rebase 389-ds-base in RHEL 7.6 to 1.3.8

[1.3.8.2-1]
- Bump version to 1.3.8.2-1
- Resolves: Bug 1560653 - Rebase 389-ds-base in RHEL 7.6 to 1.3.8


Related CVEs


CVE-2018-14648

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) 389-ds-base-1.3.8.4-15.el7.src.rpm332ef79dfd9c3bfcaa1360beea67dff5ELBA-2021-0868
389-ds-base-1.3.8.4-15.el7.aarch64.rpmb83312a14616e53a8eecac99970cdbc4ELBA-2021-0868
389-ds-base-devel-1.3.8.4-15.el7.aarch64.rpm5c73c151c7097592af1068739836656fELBA-2021-0868
389-ds-base-libs-1.3.8.4-15.el7.aarch64.rpmd841b715f832751e30edea728faa9be8ELBA-2021-0868
389-ds-base-snmp-1.3.8.4-15.el7.aarch64.rpmf80f50842fde78257a56b8f77e7d9ef6ELBA-2021-0868
Oracle Linux 7 (x86_64) 389-ds-base-1.3.8.4-15.el7.src.rpm332ef79dfd9c3bfcaa1360beea67dff5ELBA-2021-0868
389-ds-base-1.3.8.4-15.el7.x86_64.rpmd36e152347638727fe534dc3189c2158ELBA-2021-0868
389-ds-base-devel-1.3.8.4-15.el7.x86_64.rpm2f020c133bd66bfd29f7af5577ac191dELBA-2021-0868
389-ds-base-libs-1.3.8.4-15.el7.x86_64.rpmafd280c753c301dc1a4e9a461a6f8c2dELBA-2021-0868
389-ds-base-snmp-1.3.8.4-15.el7.x86_64.rpmeed0c21303a59f4b04fa94a3b144ad57ELBA-2021-0868



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete