2 matches found
CVE-2026-14969
The CVE-2026-14969 entry concerns 389-ds-base. The LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC, enabling a privileged attacker with filesystem access to detect plaintext equality across encrypted entries by ciphertext block comparison. ...
Moderate: Red Hat Security Advisory: redhat-ds-base security and bug fix update
Updated redhat-ds-base packages that fix one security issue and several bugs are now available for Red Hat Directory Server 8.2. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detail...