Oracle Linux Security Advisory ELSA-2024-3837

http://linux.oracle.com/errata/ELSA-2024-3837.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
389-ds-base-2.4.5-8.el9_4.x86_64.rpm
389-ds-base-libs-2.4.5-8.el9_4.x86_64.rpm
python3-lib389-2.4.5-8.el9_4.noarch.rpm
389-ds-base-devel-2.4.5-8.el9_4.x86_64.rpm

aarch64:
389-ds-base-2.4.5-8.el9_4.aarch64.rpm
389-ds-base-libs-2.4.5-8.el9_4.aarch64.rpm
python3-lib389-2.4.5-8.el9_4.noarch.rpm
389-ds-base-devel-2.4.5-8.el9_4.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//389-ds-base-2.4.5-8.el9_4.src.rpm

Related CVEs:

CVE-2024-2199
CVE-2024-3657




Description of changes:

[2.4.5-8]
- Bump version to 2.4.5-8
- Fix License tag

[2.4.5-7]
- Bump version to 2.4.5-7
- Resolves: RHEL-34819 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c
- Resolves: RHEL-34825 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ requ


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle9: ELSA-2024-3837: 389-ds-base Important Security Advisory Updates

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[2.4.5-8] - Bump version to 2.4.5-8 - Fix License tag [2.4.5-7] - Bump version to 2.4.5-7 - Resolves: RHEL-34819 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c - Resolves: RHEL-34825 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ requ

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//389-ds-base-2.4.5-8.el9_4.src.rpm

x86_64

389-ds-base-2.4.5-8.el9_4.x86_64.rpm 389-ds-base-libs-2.4.5-8.el9_4.x86_64.rpm python3-lib389-2.4.5-8.el9_4.noarch.rpm 389-ds-base-devel-2.4.5-8.el9_4.x86_64.rpm

aarch64

389-ds-base-2.4.5-8.el9_4.aarch64.rpm 389-ds-base-libs-2.4.5-8.el9_4.aarch64.rpm python3-lib389-2.4.5-8.el9_4.noarch.rpm 389-ds-base-devel-2.4.5-8.el9_4.aarch64.rpm

i386

Severity
Related CVEs: CVE-2024-2199 CVE-2024-3657

Related News

20.Lock AbstractDigital Circular Esm H170
2 - 4 min read
The recent discovery of a backdoor in Linux's xz compression tool has shed light on cybercriminals' ingenious methods of gaining entry and remaining
19.Laptop Bed Esm H170
2 - 4 min read
Wordfence security researchers recently shed light on an infamous supply chain attack that may have affected as many as 36,000 WordPress websites.
32.Lock Code Circular Esm H170
3 - 5 min read
In the ever-evolving cybersecurity landscape, a new concern has come to light for Linux admins—a claimed zero-day vulnerability for Local Privilege
34.Key AbstractDigital Esm H170
2 - 4 min read
RansomHub, a Ransomware-as-a-Service (RaaS) platform, has emerged as a significant threat to organizations around the globe. Targeting Windows,
1.Penguin Landscape Esm H170
2 - 4 min read
As digital privacy and security evolves, anonymity cannot be overemphasized. Tails is a live operating system designed to keep its focus on privacy
32.Lock Code Circular Esm H170
2 - 4 min read
The Cybersecurity and Infrastructure Security Agency (CISA) recently added a new Linux kernel privilege escalation bug ( CVE-2024-1086 ) to its
6.EmailConnection Touch Esm H170
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
20.Lock AbstractDigital Circular Esm H170
2 - 3 min read
Google has released fixes for a high-severity Chromium security flaw ( CVE-2024-5274 ) impacting its widely used Chrome browser and other

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved