389-ds-base-1.3.10.2-17.el7
エラータID: AXSA:2022-3917:03
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Security Fix(es):
* 389-ds-base: SIGSEGV in sync_repl (CVE-2022-2850)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Import may break replication because changelog starting csn may not be created
CVE-2022-2850
A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer dereference using a specially crafted query. This flaw allows an authenticated attacker to cause a denial of service. This CVE is assigned against an incomplete fix of CVE-2021-3514.
Update packages.
A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer dereference using a specially crafted query. This flaw allows an authenticated attacker to cause a denial of service. This CVE is assigned against an incomplete fix of CVE-2021-3514.
N/A
SRPMS
- 389-ds-base-1.3.10.2-17.el7.src.rpm
MD5: a435435ff6dc0ac75473edb88ffb5171
SHA-256: a802c325d2db48dff2378fa76e33f1bfe11b44a291479625f8e59a5fa7cb4673
Size: 3.74 MB
Asianux Server 7 for x86_64
- 389-ds-base-1.3.10.2-17.el7.x86_64.rpm
MD5: ce8fbf62b48a737045c6f69c2594f8eb
SHA-256: 13487982a2343a9ddcf3cab2389c9704859bb563786ebf3935315c5459f6d56d
Size: 1.74 MB - 389-ds-base-libs-1.3.10.2-17.el7.x86_64.rpm
MD5: f68b6e67f6ca6b8d046b93c2848f9d92
SHA-256: 787625ed8323b0296ae005024a106c7bbbaa0a8e09a67ba4f273daf3dc492164
Size: 715.64 kB
日本語