Alerts This Week
Warning Icon 1 561
Alerts This Week
Warning Icon 1 561

Fedora 44 389-ds-base Important Remote DoS Fix CVE-2026-9064

fedora
Calendar Grey June 20, 2026
Dist Fedora Esm H88
Update notification for Fedora 44 addressing critical remote DoS risk in 389-ds-base application, CVE-2026-9064.
Resolves: CVE-2026-9064

Summary

389 Directory Server is an LDAPv3 compliant server. The base package includes

the LDAP server and command line utilities for server administration.

Update Information:

Resolves: CVE-2026-9064

Topics%20covered

Topics Covered

security advisory fedora critical remote DoS 389-ds-base CVE-2026-9064

Change Log

* Thu Jun 4 2026 Viktor Ashirov - 3.2.2-1 - Bump version to 3.2.2

References


[ 1 ] Bug #2480099 - CVE-2026-9064 389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2480099

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-6d00814a85' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: 389-ds-base
Product: Fedora 44
Version: 3.2.2
Release: 2.fc44
URL: https://www.port389.org
Summary: 389 Directory Server (base)

Topics%20covered

Topics Covered

security advisory fedora critical remote DoS 389-ds-base CVE-2026-9064

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here