Synopsis: Moderate: 389-ds-base security and bug fix update
Advisory ID:       SLSA-2019:1896-1
Issue Date:        2019-07-29
CVE Numbers:       CVE-2019-3883
--

Security Fix(es):

* 389-ds-base: DoS via hanging secured connections (CVE-2019-3883)

Bug Fix(es):

* Previously, if you were using the PAM plugin and attempted to bind as a
dn that doesn't exist, the server would crash. This has now been fixed.
--

SL7
  x86_64
    389-ds-base-1.3.8.4-25.1.el7_6.x86_64.rpm
    389-ds-base-debuginfo-1.3.8.4-25.1.el7_6.x86_64.rpm
    389-ds-base-devel-1.3.8.4-25.1.el7_6.x86_64.rpm
    389-ds-base-libs-1.3.8.4-25.1.el7_6.x86_64.rpm
    389-ds-base-snmp-1.3.8.4-25.1.el7_6.x86_64.rpm
    389-ds-base-1.3.8.4-25.1.el7_6.src.rpm

- Scientific Linux Development Team