"389-ds":"1.4" 389-ds-base-1.4.3.39-23.module+el8+1966+382bf921

エラータID: AXSA:2026-377:01

Release date: 
Wednesday, April 1, 2026 - 21:59
Subject: 
"389-ds":"1.4" 389-ds-base-1.4.3.39-23.module+el8+1966+382bf921
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.

Security Fix(es):

* 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow (CVE-2025-14905)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-14905
A flaw was found in the 389-ds-base server. A heap buffer overflow vulnerability exists in the `schema_attr_enum_callback` function within the `schema.c` file. This occurs because the code incorrectly calculates the buffer size by summing alias string lengths without accounting for additional formatting characters. When a large number of aliases are processed, this oversight can lead to a heap overflow, potentially allowing a remote attacker to cause a Denial of Service (DoS) or achieve Remote Code Execution (RCE).

Modularity name: "389-ds"
Stream name: "1.4"

Solution: 

Update packages.

CVEs: 
CVE-2025-14905
A flaw was found in the 389-ds-base server. A heap buffer overflow vulnerability exists in the `schema_attr_enum_callback` function within the `schema.c` file. This occurs because the code incorrectly calculates the buffer size by summing alias string lengths without accounting for additional formatting characters. When a large number of aliases are processed, this oversight can lead to a heap overflow, potentially allowing a remote attacker to cause a Denial of Service (DoS) or achieve Remote Code Execution (RCE).
Additional Info: 

N/A

Download: 

SRPMS
  1. 389-ds-base-1.4.3.39-23.module+el8+1966+382bf921.src.rpm
    MD5: 837e253ceaa312db0441121fc2d69996
    SHA-256: 414cdf8ae0b43e6334cae771e3f00ddae58c33922a8255d6ef3fabc176ad3293
    Size: 48.56 MB

Asianux Server 8 for x86_64
  1. 389-ds-base-1.4.3.39-23.module+el8+1966+382bf921.x86_64.rpm
    MD5: 76de5ed18e2968c3665b5a487a9cc6da
    SHA-256: c9c7ed0568677386af1037f16884dde389199c9b08698aec4f0ddcb3d14860d2
    Size: 3.07 MB
  2. 389-ds-base-debugsource-1.4.3.39-23.module+el8+1966+382bf921.x86_64.rpm
    MD5: 23866c7de290ce77ca2cc3801935aaa3
    SHA-256: 7af86f8d063f3d9551ae0dadab3fdee14346f6e658fe267d11df3cadb882eede
    Size: 2.78 MB
  3. 389-ds-base-devel-1.4.3.39-23.module+el8+1966+382bf921.x86_64.rpm
    MD5: dfbdf03bfddb3b2f7df8cf8f81792a73
    SHA-256: c524e940e28a7370435f823b47e3e1f2eab22bf7cf63c8fbe5a96dcb4f235bcc
    Size: 132.82 kB
  4. 389-ds-base-legacy-tools-1.4.3.39-23.module+el8+1966+382bf921.x86_64.rpm
    MD5: d38f9bb6cf97a1e6b161c63e44733a3b
    SHA-256: ca5c8aaa292f9648d50405e92bb91629c4dde83d607d0ff1bf621a149ea6bbeb
    Size: 284.48 kB
  5. 389-ds-base-libs-1.4.3.39-23.module+el8+1966+382bf921.x86_64.rpm
    MD5: a11b9266580b7445ba5fc852bbdf94a0
    SHA-256: a065874fa055f139d342701792a8487c48c246fd07c399e3e5ca7f1b377fea5b
    Size: 1.51 MB
  6. 389-ds-base-snmp-1.4.3.39-23.module+el8+1966+382bf921.x86_64.rpm
    MD5: 91cfe7b14daa5daf88abca210646e78f
    SHA-256: e3d8a0be1f1f571384daae0c75648d5840bfb8e672d6f6e107268085ae7f6f7c
    Size: 46.07 kB
  7. python3-lib389-1.4.3.39-23.module+el8+1966+382bf921.noarch.rpm
    MD5: 4dada85b56bdf363f9ee7405d1119733
    SHA-256: 7402ade00c684a671f9815f691b7f6f5bcac41836f506304607310da2b92ff64
    Size: 0.98 MB