FEDORA-2024-48c0a7fa73 — security update for 389-ds-base

stable

389-ds-base-3.1.1-1.fc41

FEDORA-2024-48c0a7fa73 created by vashirov a year ago for Fedora 41

Automatic update for 389-ds-base-3.1.1-1.fc41.

Changelog

* Tue Jul 30 2024 Viktor Ashirov <vashirov@redhat.com> - 3.1.1-1
- Update to 3.1.1
- Resolves: CVE-2024-1062 (rhbz#2261884)
- Resolves: CVE-2024-2199 (rhbz#2283632)
- Resolves: CVE-2024-3657 (rhbz#2283631)
- Resolves: CVE-2024-5953 (rhbz#2292109)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-48c0a7fa73

This update was automatically created

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'passed'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'passed'.

a year ago

This update has been submitted for stable by bodhi

a year ago

Please log in to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

0 days

Dates

submitted

a year ago

in testing

a year ago

in stable

a year ago

approved

a year ago

Builds

389-ds-base-3.1.1-1.fc41

BZ#2261884 CVE-2024-1062 389-ds-base: a heap overflow leading to denail-of-servce while writing a value larger than 256 chars (in log_entry_attr) [fedora-all]

BZ#2283631 CVE-2024-3657 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request [fedora-all]

BZ#2283632 CVE-2024-2199 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c [fedora-all]

BZ#2292109 CVE-2024-5953 389-ds-base: Malformed userPassword hash may cause Denial of Service [fedora-all]

389-ds-base-3.1.1-1.fc41

Automated Test Results

passed