FEDORA-2024-48c0a7fa73 — security update for 389-ds-base

stable

389-ds-base-3.1.1-1.fc41

FEDORA-2024-48c0a7fa73 created by vashirov 10 months ago for Fedora 41

Automatic update for 389-ds-base-3.1.1-1.fc41.

Changelog

* Tue Jul 30 2024 Viktor Ashirov <vashirov@redhat.com> - 3.1.1-1
- Update to 3.1.1
- Resolves: CVE-2024-1062 (rhbz#2261884)
- Resolves: CVE-2024-2199 (rhbz#2283632)
- Resolves: CVE-2024-3657 (rhbz#2283631)
- Resolves: CVE-2024-5953 (rhbz#2292109)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-48c0a7fa73

This update was automatically created

10 months ago

This update's test gating status has been changed to 'waiting'.

10 months ago

This update's test gating status has been changed to 'passed'.

10 months ago

This update's test gating status has been changed to 'waiting'.

10 months ago

This update's test gating status has been changed to 'passed'.

10 months ago

This update has been submitted for stable by bodhi

10 months ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

0 days

Dates

submitted

10 months ago

in testing

10 months ago

in stable

10 months ago

approved

10 months ago

Builds

389-ds-base-3.1.1-1.fc41

BZ#2261884 CVE-2024-1062 389-ds-base: a heap overflow leading to denail-of-servce while writing a value larger than 256 chars (in log_entry_attr) [fedora-all]

BZ#2283631 CVE-2024-3657 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request [fedora-all]

BZ#2283632 CVE-2024-2199 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c [fedora-all]

BZ#2292109 CVE-2024-5953 389-ds-base: Malformed userPassword hash may cause Denial of Service [fedora-all]

389-ds-base-3.1.1-1.fc41

Automated Test Results

passed