Security fix for CVE-2021-45720

This update has been submitted for testing by mreynolds.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been pushed to testing.

4 months ago
User Icon frenaud commented & provided feedback 4 months ago
karma

Tested with ipa-backup/uninstall/ipa-restore, works well

BZ#2027730 SELinux is preventing ns-slapd access to /dev/shm/slapd-IPA-TEST/DBVERSION

This update has been submitted for stable by bodhi.

4 months ago

FEDORA-2022-7f62add497 ejected from the push because "Cannot find relevant tag for 389-ds-base-2.0.13-1.fc35. None of ['f35-updates', 'f35-updates-pending'] are in ['epel9-next-testing', 'epel7-testing', 'dist-5E-epel-testing', 'f27-modular-updates-testing', 'f34-container-updates-testing', 'eln-updates-testing', 'f30-modular-updates-testing', 'f28-modular-updates-testing', 'f28-container-updates-testing', 'f30-container-updates-testing', 'epel8-testing', 'f30-flatpak-updates-testing', 'f35-container-updates-testing', 'f32-modular-updates-testing', 'f29-modular-updates-testing', 'f29-container-updates-testing', 'f29-flatpak-updates-testing', 'f22-updates-testing', 'f21-updates-testing', 'f25-updates-testing', 'f24-updates-testing', 'f23-updates-testing', 'f26-updates-testing', 'f31-modular-updates-testing', 'dist-6E-epel-testing', 'f32-flatpak-updates-testing', 'f35-flatpak-updates-testing', 'f27-updates-testing', 'f28-updates-testing', 'f30-updates-testing', 'f29-updates-testing', 'epel8-modular-updates-testing', 'f32-updates-testing', 'epel9-testing', 'f31-updates-testing', 'f31-container-updates-testing', 'f31-flatpak-updates-testing', 'f34-updates-testing', 'f34-modular-updates-testing', 'f34-flatpak-updates-testing', 'f36-container-updates-testing', 'f32-container-updates-testing', 'epel8-next-testing', 'f35-updates-testing', 'f35-modular-updates-testing', 'f33-updates-testing', 'f36-updates-testing', 'f33-modular-updates-testing', 'f33-container-updates-testing', 'f33-flatpak-updates-testing']."

4 months ago

This update can be pushed to stable now if the maintainer wishes

4 months ago
User Icon adamwill commented & provided feedback 4 months ago
karma

So, couple things:

  • This was actually pushed stable successfully: it's right there in the stable updates tree. Bodhi got out of whack somehow.
  • This actually breaks FreeIPA upgrades and should not have been pushed stable at all. I'm investigating why ATM.

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

4 months ago
User Icon adamwill commented & provided feedback 4 months ago

Cause of the problem turns out to be https://bugzilla.redhat.com/show_bug.cgi?id=2047323 , @mreynolds is getting that fixed now.

This update has been obsoleted by 389-ds-base-2.0.14-1.fc35.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
4 months ago
in testing
4 months ago
BZ#2027730 SELinux is preventing ns-slapd access to /dev/shm/slapd-IPA-TEST/DBVERSION
0
1
BZ#2044429 CVE-2021-45720 lru: Use after free in lru crate
0
0
BZ#2044430 CVE-2021-45720 389-ds-base: bundled lru: Use after free in lru crate [fedora-all]
0
0

Automated Test Results