Scientific Linux: SLSA-2015:0895-1 Important: 389-Ds-Base Security Update

Apr 30, 2015 •

LinuxSecurity Advisories

1 - 2 min read

Scientific Large Esm H500

Topics Covered

security advisory security update unauthorized access directory server service restart authorization issue scientific linux

Important: kvm security update

Date: Thu, 30 Apr 2015 17:17:02 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA important: Important: 389-Ds-Base Security Update
 on SL7.x srpm/x86_64
MIME-Version: 1.0

important: Important: 389-Ds-Base Security Update on SL7.x srpm/x86_64
Advisory ID: SLSA-2015:0895-1
Issue Date: 2015-04-28
CVE Numbers: CVE-2015-1854
--

A flaw was found in the way the Directory Server performed authorization
of modrdn operations. An unauthenticated attacker able to issue an
ldapmodrdn call to the directory server could use this flaw to
perform unauthorized modifications of entries in the directory server.
(CVE-2015-1854)

After installing this update, the 389 server service will be restarted
automatically.
--

SL7
 x86_64
 389-ds-base-1.3.3.1-16.el7_1.x86_64.rpm
 389-ds-base-debuginfo-1.3.3.1-16.el7_1.x86_64.rpm
 389-ds-base-libs-1.3.3.1-16.el7_1.x86_64.rpm
 389-ds-base-devel-1.3.3.1-16.el7_1.x86_64.rpm
 srpm
 389-ds-base-1.3.3.1-16.el7_1.src.rpm

- Scientific Linux Development Team
lastline

Powered By

Linux Security Footer

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Your message here