Skip to content

CentOS 7 - Updates for x86_64: system environment/daemons: 389-ds-base

389-ds-base - 389 Directory Server (base)

Website: https://www.port389.org/
License: GPLv3+
Vendor: CentOS
Description:
389 Directory Server is an LDAPv3 compliant server.  The base package includes
the LDAP server and command line utilities for server administration.

Packages

389-ds-base-1.3.11.1-5.el7_9.x86_64 [2.4 MiB] Changelog by James Chapman (2024-04-24):
- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c
389-ds-base-1.3.11.1-5.el7_9.src [37.3 MiB] Changelog by James Chapman (2024-04-24):
- Bump version to 1.3.11.1-5
- Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
- Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c
389-ds-base-1.3.11.1-4.el7_9.x86_64 [2.4 MiB] Changelog by Thierry Bordaz (2023-12-13):
- Bump version to 1.3.11.1-4
- Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype
389-ds-base-1.3.11.1-3.el7_9.x86_64 [2.4 MiB] Changelog by Mark Reynolds (2023-08-14):
- Bump version to 1.3.11.1-3
- Resolves: rhbz#2224507 - Paged search impacts performance
389-ds-base-1.3.11.1-2.el7_9.x86_64 [2.4 MiB] Changelog by Mark Reynolds (2023-05-23):
- Bump version to 1.3.11.1-2
- Resolves: Bug 2170224 - Fix upgrade scripts and version string
389-ds-base-1.3.11.1-1.el7_9.x86_64 [2.4 MiB] Changelog by Simon Pichugin (2023-02-21):
- Bump version to 1.3.11.1-1
- Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
- Resolves: Bug 2170221 - Boolean attributes should be case insensitive
- Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use
389-ds-base-1.3.10.2-17.el7_9.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2022-09-30):
- Bump version to 1.3.10.2-17
- Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
- Resolves: Bug 2131083 - SIGSEGV in sync_repl
389-ds-base-1.3.10.2-16.el7_9.x86_64 [1.7 MiB] Changelog by Thierry Bordaz (2022-06-07):
- Bump version to 1.3.10.2-16
- Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
- Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
- Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
- Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database
389-ds-base-1.3.10.2-15.el7_9.x86_64 [1.7 MiB] Changelog by Thierry Bordaz (2022-02-03):
- Bump version to 1.3.10.2-15
- Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
- Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search
389-ds-base-1.3.10.2-14.el7_9.x86_64 [1.7 MiB] Changelog by Thierry Bordaz (2021-10-29):
- Bump version to 1.3.10.2-14
- Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
- Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)
389-ds-base-1.3.10.2-13.el7_9.x86_64 [1.7 MiB] Changelog by Thierry Bordaz (2021-09-20):
- Bump version to 1.3.10.2-13
- Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
- Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
- Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
- Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule
389-ds-base-1.3.10.2-12.el7_9.x86_64 [1.7 MiB] Changelog by Thierry Bordaz (2021-05-07):
- Bump version to 1.3.10.2-12
389-ds-base-1.3.10.2-10.el7_9.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2021-02-25):
- Bump version to 1.3.10.2-10
- Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search
- Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation 
- Resolves: Bug 1881968 - Replication Lag under high load
389-ds-base-1.3.10.2-9.el7_9.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2021-01-07):
- Bump version to 1.3.10.2-8
- Resolves: Bug 1905450 - Internal unindexed search crashes the server
389-ds-base-1.3.10.2-8.el7_9.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-12-03):
- Bump version to 1.3.10.2-8
- Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32
- Resolves: Bug 1902042 - Entries conflict not resolved by replication
389-ds-base-1.3.10.2-7.1.el7_9.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-10-21):
- Bump version to 1.3.10.2-7
- Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service
- Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL
- Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars
389-ds-base-1.3.10.2-6.el7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-06-04):
- Bump version to 1.3.10.2-6
- Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter
389-ds-base-1.3.10.1-14.el7_8.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-06-15):
- Bump version to 1.3.10.1-14
- Resolves: Bug 1814603 - revert patch as it conflicts with 389-admin package
389-ds-base-1.3.10.1-9.el7_8.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-04-06):
- Bump version to 1.3.10.1-9
- Resolves: Bug 1817933 - cenotaph errors on modrdn operations
389-ds-base-1.3.10.1-5.el7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-02-07):
- Bump version to 1.3.10.1-5
- Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache(cont)
389-ds-base-1.3.9.1-13.el7_7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2020-02-12):
- Bump version to 1.3.9.1-13
- Resolves: Bug 1801693 - ns-slapd is crashing while restarting ipactl
- Resolves: Bug 1801695 - LDAP server returning controltype in different sequence
- Resolves: Bug 1801700 - After running cl-dump dbdir/cldb/*ldif.done are not deleted
- Resolves: Bug 1801701 - etime displayed has an order of magnitude 10 times smaller than it should be
- Resolves: Bug 1801702 - Regression: NSS has interop problems as server when using limited cipher list
- Resolves: Bug 1801704 - Log the actual base DN when the search fails with "invalid attribute request"
- Resolves: Bug 1801705 - Directory Server 10 not RFC 4511 compliant
- Resolves: Bug 1801706 - Replace error by warning in the state machine defined in repl5_inc_run
389-ds-base-1.3.9.1-12.el7_7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2019-11-01):
- Bump version to 1.3.9.1-12
- Resolves: Bug 1767622 - CleanAllRUV task limit not enforced
389-ds-base-1.3.9.1-10.el7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2019-06-13):
- Bump version to 1.3.9.1-10
- Resolves: Bug 1668457 - CVE-2019-3883 389-ds-base: DoS via hanging secured connections
389-ds-base-1.3.8.4-25.1.el7_6.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2019-07-03):
- Bump version to 1.3.8.4-25.1
- Resolves: Bug 1718689 - dse.ldif strip-off string after 1023 character (missing patch file)
389-ds-base-1.3.8.4-23.el7_6.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2019-02-06):
- Bump version to 1.3.8.4-23
- Resolves: Bug 1672173 - import task should not be deleted after import finishes to be able to query the status
- Resolves: Bug 1672177 - after certain failed import operation, impossible to replay an import operation.
- Resolves: Bug 1672179 - cannot add cenotaph in read only consumer
389-ds-base-1.3.8.4-22.el7_6.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-12-17):
- Bump version to 1.3.8.4-22
- Resolves: Bug 1660120 - certmap fails when Issuer DN has comma in name
389-ds-base-1.3.8.4-18.el7_6.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-10-29):
- Bump version to 1.3.8.4-18
- Resolves: Bug 1638516 - CRIT - list_candidates - NULL idl was recieved from filter_candidates_ex
389-ds-base-1.3.8.4-15.el7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-09-19):
- Bump version to 1.3.8.4-15
- Resolves: Bug 1624004 - Fix regression in last patch
389-ds-base-1.3.7.5-28.el7_5.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-09-13):
- Bump version to 1.3.7.5-28
- Resolves: Bug 1628676 - 389-ds-base: race condition on reference counter leads to DoS using persistent search
- Resolves: Bug 1628677 - Crash in delete_passwdPolicy when persistent search connections are terminated unexpectedly
389-ds-base-1.3.7.5-25.el7_5.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-07-03):
- Bump version to 1.3.7.5-25
- Resolves: Bug 1597530 - Async operations can hang when the server is running nunc-stans
389-ds-base-1.3.7.5-24.el7_5.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-06-13):
- Bump version to 1.3.7.5-24
- Resolves: Bug 1580257 - Fix certificate directory verification
389-ds-base-1.3.7.5-21.el7_5.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-04-05):
- Bump version to 1.3.7.5-21
- Resolves: Bug 1559818 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch
389-ds-base-1.3.7.5-19.el7_5.x86_64 [1.7 MiB] Changelog by Matus Honek (2018-04-03):
- Bump version to 1.3.7.5-19
- Resolves: Bug 1563107 - IPA server is not responding, all authentication and admin tests failed [rhel-7.5.z]
389-ds-base-1.3.7.5-18.el7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-02-12):
- Bump version to 1.3.7.5-18
- Resolves: Bug 1539082 - Fix memory leak
389-ds-base-1.3.6.1-28.el7_4.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-02-26):
- Bump version to 1.3.6.1-28
- Resolves: Bug 1540105 - CVE-2018-1054 - remote Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8
389-ds-base-1.3.6.1-26.el7_4.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2018-01-16):
- Bump version to 1.3.6.1-25
- Resolves: Bug 1534430 - crash in slapi_filter_sprintf
389-ds-base-1.3.6.1-24.el7_4.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-11-10):
- Bump version to 1.3.6.1-24
- Resolves: Bug 1508978 - replicated MODRDN fails breaking replication
- Resolves: Bug 1511940 - heap corruption during import
- Resolves: Bug 1510319 - [abrt] 389-ds-base: SLL_Next(): ns-slapd killed by SIGSEGV 
- Resolves: Bug 1509347 - cleanallruv task is not logging any information
389-ds-base-1.3.6.1-21.el7_4.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-10-05):
- Bump verions to 1.3.6.1-21
- Resolves: Bug 1498958 - unable to retrieve specific cosAttribute when subtree password policy is configured
389-ds-base-1.3.6.1-19.el7_4.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-08-21):
- Bump version to 1.3.6.19-1
- Remove old mozldap and db4 requirements
- Resolves: Bug 1483865 - Crash while binding to a server during replication online init
389-ds-base-1.3.6.1-16.el7.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-06-06):
- Bump version to 1.3.6.1-16
- Resolves: Bug 1444938 - nsslapd-allowed-sasl-mechanisms doesn't reset to default values without a restart
- Resolves: Bug 1447015 - Adjust db2bak.pl help and man page to reflect changes introduced to the script
- Resolves: Bug 1450896 - Manual resetting of nsslapd-dbcachesize using ldapmodify
- Resolves: Bug 1454921 - Fixup memberof task throws error "memberof_fix_memberof_callback: Weird
- Resolves: Bug 1456774 - ipa-replica server fails to upgrade
389-ds-base-1.3.5.10-21.el7_3.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-04-24):
- Bump verison to 1.3.5.10-21
- Resolves: Bug 1440654 - Possible deadlock while installing an ipa replica
- Resolves: Bug 1445178 - Silent install localhost issue
- Resolves: Bug 1445177 - retrocl crash at shutdown
- Resolves: Bug 1445176 - case sensitivity in acl
389-ds-base-1.3.5.10-20.el7_3.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-04-03):
- Bump version to 1.3.5.10-20
- Resolves: bug 1437005 - CVE-2017-2668 389-ds-base: Remote crash via crafted LDAP messages
389-ds-base-1.3.5.10-18.el7_3.x86_64 [1.7 MiB] Changelog by Mark Reynolds (2017-02-16):
- Release 1.3.5.10-18
- Resolves: bug 1387340 - Aborted operation can leave RUV in incorrect state
389-ds-base-1.3.5.10-15.el7_3.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2017-01-04):
- Release 1.3.5.10-15
- Resolves: bug 1402325 - do not treat missing csn as fatal (DS 48964)
- Resolves: bug 1410080 - incompatible nsEncryptionConfig object definition prevents RHEL 7->6 schema replication (DS 49074)
389-ds-base-1.3.5.10-12.el7_3.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-10-31):
- Release 1.3.5.10-12
- Resolves: bug 1384785 - Replica install fails with old IPA master sometimes during replication process (DS 48992)
- Resolves: bug 1388501 - 389-ds-base is missing runtime dependency - bind-utils (DS 48328)
- Resolves: bug 1388581 - Replication stops working only when fips mode is set to true (DS 48909)
- Resolves: bug 1390342 - ns-accountstatus.pl shows wrong status for accounts inactivated by Account policy plugin (DS 49014)
- Resolves: bug 1390343 - trace args debug logging must be more restrictive (DS 49009)
389-ds-base-1.3.5.10-11.el7.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-09-13):
- Release 1.3.5.10-11
- Resolves: bug 1321124 - Replication changelog can incorrectly skip over updates
389-ds-base-1.3.4.0-33.el7_2.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-06-30):
- release 1.3.4.0-33
- Resolves: bug 1351323 - Improve MMR replication convergence (DS 48636)
- Resolves: bug 1351447 - Supplier can skip a failing update, although it should retry. (DS 47788)
- Resolves: bug 1350707 - Replication changelog can incorrectly skip over updates (DS 48766)
389-ds-base-1.3.4.0-32.el7_2.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-06-09):
- release 1.3.4.0-32
- Resolves: bug 1344293 - At startup DES to AES password conversion causes timeout in start script (DS 48862)
389-ds-base-1.3.4.0-30.el7_2.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-03-30):
- release 1.3.4.0-30
- Resolves: bug 1321891 - DES to AES password conversion fails if a backend is empty (DS 48777)
389-ds-base-1.3.4.0-29.el7_2.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-03-10):
- release 1.3.4.0-29
- Resolves: bug 1316552 - License tag does not match actual license of code (DS 48757)
389-ds-base-1.3.4.0-26.el7_2.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2016-01-25):
- release 1.3.4.0-26
- Resolves: bug 1299346 - deadlock on connection mutex (DS 48341)
389-ds-base-1.3.4.0-21.el7_2.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2015-11-18):
- release 1.3.4.0-21
- Resolves: bug 1278730 - SimplePagedResults -- abandon could happen between the abandon check and sending results -- Fixing a regression introduced in 1.3.4.0-20 (DS 48338)
389-ds-base-1.3.4.0-19.el7.x86_64 [1.7 MiB] Changelog by Noriko Hosoi (2015-10-05):
- release 1.3.4.0-19
- Resolves: bug 1228823 - async simple paged results issue (DS 48299, DS 48192)
- Resolves: bug 1266944 - ns-slapd crash during ipa-replica-manage del (DS 48298)
389-ds-base-1.3.3.1-23.el7_1.x86_64 [1.6 MiB] Changelog by Noriko Hosoi (2015-09-24):
- release 1.3.3.1-23
- Resolves: bug 1262363 - In MMR, double free coould occur under some special condition (DS 48226)
389-ds-base-1.3.3.1-20.el7_1.x86_64 [1.6 MiB] Changelog by Noriko Hosoi (2015-07-16):
- release 1.3.3.1-20
- Resolves: bug 1243718 - Winsync fails when AD users have multiple spaces (two)inside the value of the rdn attribute (DS 48223)
389-ds-base-1.3.3.1-16.el7_1.x86_64 [1.6 MiB] Changelog by Noriko Hosoi (2015-04-21):
- release 1.3.3.1-16
- Resolves: bug 1212894 - CVE-2015-1854 389ds-base: access control bypass with modrdn
389-ds-base-1.3.3.1-15.el7_1.x86_64 [1.6 MiB] Changelog by Noriko Hosoi (2015-02-23):
- release 1.3.3.1-15
- Setting correct build tag 'rhel-7.1-z-candidate'

Listing created by repoview