Lucene search
OracleLinuxELSA-2022-0628HistoryFeb 23, 2022 - 12:00 a.m.
389-ds-base security and bug fix update
2022-02-2300:00:00
linux.oracle.com
19
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
[1.3.10.2-15]
- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | 389-ds-base | < 1.3.10.2-15.el7_9 | 389-ds-base-1.3.10.2-15.el7_9.src.rpm |
| oracle linux | 7 | aarch64 | 389-ds-base | < 1.3.10.2-15.el7_9 | 389-ds-base-1.3.10.2-15.el7_9.aarch64.rpm |
| oracle linux | 7 | aarch64 | 389-ds-base-devel | < 1.3.10.2-15.el7_9 | 389-ds-base-devel-1.3.10.2-15.el7_9.aarch64.rpm |
| oracle linux | 7 | aarch64 | 389-ds-base-libs | < 1.3.10.2-15.el7_9 | 389-ds-base-libs-1.3.10.2-15.el7_9.aarch64.rpm |
| oracle linux | 7 | aarch64 | 389-ds-base-snmp | < 1.3.10.2-15.el7_9 | 389-ds-base-snmp-1.3.10.2-15.el7_9.aarch64.rpm |
| oracle linux | 7 | src | 389-ds-base | < 1.3.10.2-15.el7_9 | 389-ds-base-1.3.10.2-15.el7_9.src.rpm |
| oracle linux | 7 | x86_64 | 389-ds-base | < 1.3.10.2-15.el7_9 | 389-ds-base-1.3.10.2-15.el7_9.x86_64.rpm |
| oracle linux | 7 | x86_64 | 389-ds-base-devel | < 1.3.10.2-15.el7_9 | 389-ds-base-devel-1.3.10.2-15.el7_9.x86_64.rpm |
| oracle linux | 7 | x86_64 | 389-ds-base-libs | < 1.3.10.2-15.el7_9 | 389-ds-base-libs-1.3.10.2-15.el7_9.x86_64.rpm |
| oracle linux | 7 | x86_64 | 389-ds-base-snmp | < 1.3.10.2-15.el7_9 | 389-ds-base-snmp-1.3.10.2-15.el7_9.x86_64.rpm |
Related
osv
osv
Low: 389-ds:1.4 security and bug fix update
2022-03-15 09:10:39
Low: 389-ds:1.4 security and bug fix update
2022-03-15 09:10:39
389-ds-base - security update
2023-04-24 00:00:00
nessus
nessus
RHEL 8 : 389-ds:1.4 (RHSA-2022:1410)
2022-04-19 00:00:00
RHEL 7 : 389-ds-base (RHSA-2022:0628)
2022-02-22 00:00:00
RHEL 8 : 389-ds:1.4 (RHSA-2022:0889)
2022-03-15 00:00:00
mageia
mageia
Updated 389-ds-base packages fix security vulnerability
2022-03-21 23:18:30
redhat
redhat
(RHSA-2022:1410) Low: 389-ds:1.4 security and bug fix update
2022-04-19 13:44:08
(RHSA-2022:0889) Low: 389-ds:1.4 security and bug fix update
2022-03-15 09:10:39
(RHSA-2022:0628) Low: 389-ds-base security and bug fix update
2022-02-22 14:30:21
oraclelinux
oraclelinux
389-ds:1.4 security and bug fix update
2022-03-16 00:00:00
prion
prion
Double free
2022-02-18 18:15:00
f5
f5
K15244523 : 389-ds-base vulnerability CVE-2021-4091
2022-04-21 00:00:00
debiancve
debiancve
CVE-2021-4091
2022-02-18 18:15:00
openvas
openvas
CentOS: Security Advisory for 389-ds-base (CESA-2022:0628)
2022-02-26 00:00:00
Mageia: Security Advisory (MGASA-2022-0106)
2022-03-22 00:00:00
openSUSE: Security Advisory for 389-ds (SUSE-SU-2022:2081-1)
2022-06-15 00:00:00
amazon
amazon
Low: 389-ds-base
2022-08-15 18:37:00
Medium: 389-ds-base
2022-07-19 00:26:00
rocky
rocky
389-ds:1.4 security and bug fix update
2022-03-15 09:10:39
ubuntucve
ubuntucve
CVE-2021-4091
2022-02-18 00:00:00
redhatcve
redhatcve
CVE-2021-4091
2022-01-27 13:33:10
centos
centos
389 security update
2022-02-25 15:36:34
veracode
veracode
Denial Of Service (DoS)
2022-03-13 00:42:56
almalinux
almalinux
Low: 389-ds:1.4 security and bug fix update
2022-03-15 09:10:39
cve
cve
CVE-2021-4091
2022-02-18 18:15:00
suse
suse
Security update for 389-ds (important)
2022-06-14 00:00:00
Security update for 389-ds (important)
2022-07-06 00:00:00
debian
debian
[SECURITY] [DLA 3399-1] 389-ds-base security update
2023-04-24 05:25:20
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for ELSA-2022-0628