Synopsis: Moderate: 389-ds-base security and bug fix update

Advisory ID:       SLSA-2019:1896-1

Issue Date:        2019-07-29

CVE Numbers:       CVE-2019-3883

--



Security Fix(es):



* 389-ds-base: DoS via hanging secured connections (CVE-2019-3883)



Bug Fix(es):



* Previously, if you were using the PAM plugin and attempted to bind as a

dn that doesn't exist, the server would crash. This has now been fixed.

--



SL7

  x86_64

    389-ds-base-1.3.8.4-25.1.el7_6.x86_64.rpm

    389-ds-base-debuginfo-1.3.8.4-25.1.el7_6.x86_64.rpm

    389-ds-base-devel-1.3.8.4-25.1.el7_6.x86_64.rpm

    389-ds-base-libs-1.3.8.4-25.1.el7_6.x86_64.rpm

    389-ds-base-snmp-1.3.8.4-25.1.el7_6.x86_64.rpm

    389-ds-base-1.3.8.4-25.1.el7_6.src.rpm



- Scientific Linux Development Team