Oracle Linux Security Advisory ELSA-2024-3591

http://linux.oracle.com/errata/ELSA-2024-3591.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
389-ds-base-1.3.11.1-5.el7_9.aarch64.rpm
389-ds-base-libs-1.3.11.1-5.el7_9.aarch64.rpm
389-ds-base-devel-1.3.11.1-5.el7_9.aarch64.rpm
389-ds-base-snmp-1.3.11.1-5.el7_9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//389-ds-base-1.3.11.1-5.el7_9.src.rpm

Related CVEs:

CVE-2024-2199
CVE-2024-3657




Description of changes:

[1.3.11.1-5]
- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata