ELSA-2019-3981

ELSA-2019-3981 - 389-ds-base security and bug fix update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-11-27

Description

[1.3.9.1-12]
- Bump version to 1.3.9.1-12
- Resolves: Bug 1767622 - CleanAllRUV task limit not enforced

[1.3.9.1-11]
- Bump version to 1.3.9.1-11
- Resolves: Bug 1748198 - EMBARGOED CVE-2019-14824 389-ds-base: Read permission check bypass via the deref plugin
- Resolves: Bug 1754831 - After audit log file is rotated, DS version string is logged after each update
- Resolves: Bug 1763622 - Extremely slow LDIF import with ldif2db
- Resolves: Bug 1763627 - ns-slapd crash on concurrent SASL BINDs, connection_call_io_layer_callbacks must hold hold c_mutex
- Resolves: Bug 1749289 - DB Deadlock on modrdn appears to corrupt database and entry cache

Related CVEs

CVE-2019-14824

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 7 (aarch64)	389-ds-base-1.3.9.1-12.el7_7.src.rpm	f5830b57b43ada4ab497bf1862fb3bf7	ELBA-2021-0868
	389-ds-base-1.3.9.1-12.el7_7.aarch64.rpm	f826d34fc944d0c388667b806c44e5d9	ELBA-2021-0868
	389-ds-base-devel-1.3.9.1-12.el7_7.aarch64.rpm	217b940fb6c669dbc082741e19a69fc4	ELBA-2021-0868
	389-ds-base-libs-1.3.9.1-12.el7_7.aarch64.rpm	a68595486ed117a3949d7a87aa01946a	ELBA-2021-0868
	389-ds-base-snmp-1.3.9.1-12.el7_7.aarch64.rpm	fbf05cf3f8bcfd1b057fdd3dc647b0af	ELBA-2021-0868
Oracle Linux 7 (x86_64)	389-ds-base-1.3.9.1-12.el7_7.src.rpm	f5830b57b43ada4ab497bf1862fb3bf7	ELBA-2021-0868
	389-ds-base-1.3.9.1-12.el7_7.x86_64.rpm	57364170511f02db4ff2ca6e7869a72f	ELBA-2021-0868
	389-ds-base-devel-1.3.9.1-12.el7_7.x86_64.rpm	ca381116deae9e24bfebf4eeceddc08a	ELBA-2021-0868
	389-ds-base-libs-1.3.9.1-12.el7_7.x86_64.rpm	f4f7d9e472f22fc610e4a47e66eb544d	ELBA-2021-0868
	389-ds-base-snmp-1.3.9.1-12.el7_7.x86_64.rpm	f56f6c6e32753161dd3cf74ca894d871	ELBA-2021-0868

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team