- Issued:
- 2021-06-08
- Updated:
- 2021-06-08
RHSA-2021:2323 - Security Advisory
Synopsis
Moderate: 389-ds-base security and bug fix update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for 389-ds-base is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Security Fix(es):
- 389-ds-base: information disclosure during the binding of a DN (CVE-2020-35518)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
- Add new access log keywords for time spent in work queue and actual operation time (BZ#1953673)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing this update, the 389 server service will be restarted automatically.
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
Fixes
- BZ - 1905565 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN
- BZ - 1931182 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [rhel-7]
- BZ - 1953673 - Add new access log keywords for time spent in work queue and actual operation time
CVEs
Red Hat Enterprise Linux Server 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
x86_64 | |
389-ds-base-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: da07480b47a2d35288a09a2b1e5efbd8fc6a82b99ec89557830bf871c9642f7e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-devel-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: f54b52de7711a5c1219d3405eed922d984208d181f8db5d1c85b2af07ca7299b |
389-ds-base-libs-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: c60e325df758f8545f32e3e82b64dcdff51f07e201c09c14ba22a1bc45b1aec0 |
389-ds-base-snmp-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: 8206715c1a80e82b549affffeb57de83d84bee763e5f6a5fc60d3965089e106c |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
x86_64 | |
389-ds-base-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: da07480b47a2d35288a09a2b1e5efbd8fc6a82b99ec89557830bf871c9642f7e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-devel-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: f54b52de7711a5c1219d3405eed922d984208d181f8db5d1c85b2af07ca7299b |
389-ds-base-libs-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: c60e325df758f8545f32e3e82b64dcdff51f07e201c09c14ba22a1bc45b1aec0 |
389-ds-base-snmp-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: 8206715c1a80e82b549affffeb57de83d84bee763e5f6a5fc60d3965089e106c |
Red Hat Enterprise Linux Workstation 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
x86_64 | |
389-ds-base-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: da07480b47a2d35288a09a2b1e5efbd8fc6a82b99ec89557830bf871c9642f7e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-devel-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: f54b52de7711a5c1219d3405eed922d984208d181f8db5d1c85b2af07ca7299b |
389-ds-base-libs-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: c60e325df758f8545f32e3e82b64dcdff51f07e201c09c14ba22a1bc45b1aec0 |
389-ds-base-snmp-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: 8206715c1a80e82b549affffeb57de83d84bee763e5f6a5fc60d3965089e106c |
Red Hat Enterprise Linux Desktop 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
x86_64 | |
389-ds-base-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: da07480b47a2d35288a09a2b1e5efbd8fc6a82b99ec89557830bf871c9642f7e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-devel-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: f54b52de7711a5c1219d3405eed922d984208d181f8db5d1c85b2af07ca7299b |
389-ds-base-libs-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: c60e325df758f8545f32e3e82b64dcdff51f07e201c09c14ba22a1bc45b1aec0 |
389-ds-base-snmp-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: 8206715c1a80e82b549affffeb57de83d84bee763e5f6a5fc60d3965089e106c |
Red Hat Enterprise Linux for IBM z Systems 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
s390x | |
389-ds-base-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: f8a0cb64032b47c19bee5d2123e22b3de58f242658aea04795e06c5e069565cf |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: 05bef2a9b7ef97c5b844f96e38b5f7593ca4f29d831284fa5fd791b577b0b687 |
389-ds-base-devel-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: cc61e2487f6c07bf810e68afe4e750cea5d5e8841991c1b146577335a7ce7090 |
389-ds-base-libs-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: cde3d020618cdef6283f8bc535f01513e0cae1ffbc172fcf54fa234da13083b9 |
389-ds-base-snmp-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: e1e8b3ae4404c2844f2f60014d8752baadea0520110b8c5539e2ba35f233cc65 |
Red Hat Enterprise Linux for Power, big endian 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
ppc64 | |
389-ds-base-1.3.10.2-12.el7_9.ppc64.rpm | SHA-256: 8746636789d6547bca01f902de3fda23575a91fe963ce1c84a828abbf3bd3d7a |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.ppc64.rpm | SHA-256: 91cea9cee6e4088c76c657550528d725747ee1e051b164e94395248c7c5a61e0 |
389-ds-base-devel-1.3.10.2-12.el7_9.ppc64.rpm | SHA-256: 9fc32dfabdf352ad8bc7bbc07d4eaf2d4ec67b2420fbcd9a186ab405d371fd37 |
389-ds-base-libs-1.3.10.2-12.el7_9.ppc64.rpm | SHA-256: 08d800b01976d7425fe4305c7562287a1faeea6cd2b21ac95d7d0376d483e4ff |
389-ds-base-snmp-1.3.10.2-12.el7_9.ppc64.rpm | SHA-256: eb92d00237ff657c3847361bacff4c71be7055180ce48efa43b7eb9b9f6ab31f |
Red Hat Enterprise Linux for Scientific Computing 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
x86_64 | |
389-ds-base-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: da07480b47a2d35288a09a2b1e5efbd8fc6a82b99ec89557830bf871c9642f7e |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: beac6d62eb234b07b6ed4310da9b2036593e0c33c12950ee2a70ffe7a900c60e |
389-ds-base-devel-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: f54b52de7711a5c1219d3405eed922d984208d181f8db5d1c85b2af07ca7299b |
389-ds-base-libs-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: c60e325df758f8545f32e3e82b64dcdff51f07e201c09c14ba22a1bc45b1aec0 |
389-ds-base-snmp-1.3.10.2-12.el7_9.x86_64.rpm | SHA-256: 8206715c1a80e82b549affffeb57de83d84bee763e5f6a5fc60d3965089e106c |
Red Hat Enterprise Linux for Power, little endian 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
ppc64le | |
389-ds-base-1.3.10.2-12.el7_9.ppc64le.rpm | SHA-256: 8872c16be23cc035a3cf34ac1d6848ba6d6ca64f1cef74842d9390f22ed0e851 |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.ppc64le.rpm | SHA-256: 57ec1bc63f2282529f4705683397f946ba55b27221df90aee04ec379bc7a8e3d |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.ppc64le.rpm | SHA-256: 57ec1bc63f2282529f4705683397f946ba55b27221df90aee04ec379bc7a8e3d |
389-ds-base-devel-1.3.10.2-12.el7_9.ppc64le.rpm | SHA-256: d55794a4eaf88fb7d122fcbf60d56058b5f9d02bacf9659406d1268b8ecbea4e |
389-ds-base-libs-1.3.10.2-12.el7_9.ppc64le.rpm | SHA-256: 5ec83fbf7cc046a12b14742ef966a4f1285efce6da37ffa51c5343e344911383 |
389-ds-base-snmp-1.3.10.2-12.el7_9.ppc64le.rpm | SHA-256: 0e727e5e72a2e42c7e2fae8e356f285992cad9c848604a52a5d61f6b419a16ea |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7
SRPM | |
---|---|
389-ds-base-1.3.10.2-12.el7_9.src.rpm | SHA-256: cf182de3e1453da90ce3b4f31ccf59687af7646ca3d9062c90ab24bc9210e1a5 |
s390x | |
389-ds-base-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: f8a0cb64032b47c19bee5d2123e22b3de58f242658aea04795e06c5e069565cf |
389-ds-base-debuginfo-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: 05bef2a9b7ef97c5b844f96e38b5f7593ca4f29d831284fa5fd791b577b0b687 |
389-ds-base-devel-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: cc61e2487f6c07bf810e68afe4e750cea5d5e8841991c1b146577335a7ce7090 |
389-ds-base-libs-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: cde3d020618cdef6283f8bc535f01513e0cae1ffbc172fcf54fa234da13083b9 |
389-ds-base-snmp-1.3.10.2-12.el7_9.s390x.rpm | SHA-256: e1e8b3ae4404c2844f2f60014d8752baadea0520110b8c5539e2ba35f233cc65 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.