What Are You Looking For?

Sign Up
Date:         Thu, 30 Apr 2015 17:17:02 +0000
Reply-To:     scientific-linux-users@listserv.fnal.gov
Sender:       Security Errata for Scientific Linux
              
From:         Pat Riehecky 
Subject:      Security ERRATA important: Important: 389-Ds-Base Security Update
              on SL7.x srpm/x86_64
MIME-Version: 1.0

important:         Important: 389-Ds-Base Security Update on SL7.x srpm/x86_64
Advisory ID:       SLSA-2015:0895-1
Issue Date:        2015-04-28
CVE Numbers:       CVE-2015-1854
--

A flaw was found in the way the Directory Server performed authorization
of modrdn operations. An unauthenticated attacker able to issue an
ldapmodrdn call to the directory server could use this flaw to
perform unauthorized modifications of entries in the directory server.
(CVE-2015-1854)

After installing this update, the 389 server service will be restarted
automatically.
--

SL7
  x86_64
    389-ds-base-1.3.3.1-16.el7_1.x86_64.rpm
    389-ds-base-debuginfo-1.3.3.1-16.el7_1.x86_64.rpm
    389-ds-base-libs-1.3.3.1-16.el7_1.x86_64.rpm
    389-ds-base-devel-1.3.3.1-16.el7_1.x86_64.rpm
  srpm
    389-ds-base-1.3.3.1-16.el7_1.src.rpm

- Scientific Linux Development Team
lastline

SciLinux: CVE-2015-1854 important: Important: 389-Ds-Base Security Update

Important: kvm security update

Summary

Date:         Thu, 30 Apr 2015 17:17:02 +0000 Reply-To:     scientific-linux-users@listserv.fnal.gov Sender:       Security Errata for Scientific Linux                From:         Pat Riehecky  Subject:      Security ERRATA important: Important: 389-Ds-Base Security Update               on SL7.x srpm/x86_64 MIME-Version: 1.0important:         Important: 389-Ds-Base Security Update on SL7.x srpm/x86_64

Security Fixes

Severity
Issued Date: : 2015-04-28
CVE Numbers: CVE-2015-1854
A flaw was found in the way the Directory Server performed authorization
of modrdn operations. An unauthenticated attacker able to issue an

Related News

Security Highlights from KubeCon + CloudNativeCon 2023

Nov 18, 2023

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

News

Advisories

HOWTOs

Features

Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug

About Us

Powered By

Footer Logo