389-ds-base-1.3.5.10-20.el7
エラータID: AXSA:2017-1608:03
389 Directory Server is an LDAPv3 compliant server. The base package includes
the LDAP server and command line utilities for server administration.
Security issues fixed with this release:
CVE-2017-2668
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
Fixed bugs:
* Previously, when adding a filtered role definition that uses the "nsrole" virtual attribute in the filter, Directory Server terminated unexpectedly. A patch has been applied, and now the roles plug-in ignores all virtual attributes. As a result, an error message is logged when an invalid filter is used. Additionally, the role is deactivated and Directory Server no longer fails.
* In a replication topology, Directory Server incorrectly calculated the size of string format entries when a lot of entries were deleted. The calculated size of entries was smaller than the actual required size. Consequently, Directory Server allocated insufficient memory and terminated unexpectedly when the data was written to it. With this update, the size of string format entries is now calculated correctly in the described situation and Directory Server no longer terminates unexpectedly.
Update package.
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
N/A
SRPMS
- 389-ds-base-1.3.5.10-20.el7.src.rpm
MD5: e8733ca731a4c434cf9e43e22bb5ad42
SHA-256: bc944b5d3746452fdc27d090b8fb60996c8c4af4b3e53827b480bafc3e69f1ef
Size: 4.05 MB
Asianux Server 7 for x86_64
- 389-ds-base-1.3.5.10-20.el7.x86_64.rpm
MD5: 091af8bd08bc072692834ce180a940c4
SHA-256: 3b6e998eb286f83b495464e92d3edc0507bd7a6ba51902bdea801909fb0e1921
Size: 1.69 MB - 389-ds-base-libs-1.3.5.10-20.el7.x86_64.rpm
MD5: 46ecb89ceb48b44f7c80ff756683a9e4
SHA-256: 5de82a1c2045430a84d4b0195888be69e36f8db472641582a549a4c3dca7f809
Size: 664.34 kB