Red Hat Product Errata RHSA-2022:7087 - Security Advisory
Issued:
2022-10-25
Updated:
2022-10-25

RHSA-2022:7087 - Security Advisory

Synopsis

Moderate: 389-ds-base security and bug fix update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for 389-ds-base is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.

Security Fix(es):

  • 389-ds-base: SIGSEGV in sync_repl (CVE-2022-2850)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Import may break replication because changelog starting csn may not be created (BZ#2113056)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing this update, the 389 server service will be restarted automatically.

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux Desktop 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le

Fixes

  • BZ - 2113056 - Import may break replication because changelog starting csn may not be created
  • BZ - 2118691 - CVE-2022-2850 389-ds-base: SIGSEGV in sync_repl

Red Hat Enterprise Linux Server 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
x86_64
389-ds-base-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: fe412472deadb4cd830c484cc669aa6081dcae42d3be1412888761e1d0ef9c26
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-devel-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 4b83b75d530427850160e3fffc4402507162d16a893dc9b5226dafa5d7c42db1
389-ds-base-libs-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 8ab804565ac7e6aba521c90249f9a7efc7d0d3779e41795e284f69033e721a55
389-ds-base-snmp-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 5b76c5b830a94882a1372610095f5aadd8ab5dbd8bc1bff124849133c1bb3893

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
x86_64
389-ds-base-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: fe412472deadb4cd830c484cc669aa6081dcae42d3be1412888761e1d0ef9c26
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-devel-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 4b83b75d530427850160e3fffc4402507162d16a893dc9b5226dafa5d7c42db1
389-ds-base-libs-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 8ab804565ac7e6aba521c90249f9a7efc7d0d3779e41795e284f69033e721a55
389-ds-base-snmp-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 5b76c5b830a94882a1372610095f5aadd8ab5dbd8bc1bff124849133c1bb3893

Red Hat Enterprise Linux Workstation 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
x86_64
389-ds-base-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: fe412472deadb4cd830c484cc669aa6081dcae42d3be1412888761e1d0ef9c26
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-devel-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 4b83b75d530427850160e3fffc4402507162d16a893dc9b5226dafa5d7c42db1
389-ds-base-libs-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 8ab804565ac7e6aba521c90249f9a7efc7d0d3779e41795e284f69033e721a55
389-ds-base-snmp-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 5b76c5b830a94882a1372610095f5aadd8ab5dbd8bc1bff124849133c1bb3893

Red Hat Enterprise Linux Desktop 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
x86_64
389-ds-base-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: fe412472deadb4cd830c484cc669aa6081dcae42d3be1412888761e1d0ef9c26
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-devel-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 4b83b75d530427850160e3fffc4402507162d16a893dc9b5226dafa5d7c42db1
389-ds-base-libs-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 8ab804565ac7e6aba521c90249f9a7efc7d0d3779e41795e284f69033e721a55
389-ds-base-snmp-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 5b76c5b830a94882a1372610095f5aadd8ab5dbd8bc1bff124849133c1bb3893

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
s390x
389-ds-base-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 98befa6a824733d61f72bde9ac6dcb4b4f0fad327c23d80d0ef6cf0589580640
389-ds-base-debuginfo-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 4367a9241f29a54ce4bc42affa4427f6012cec33cd349e90ff135088cec94d9b
389-ds-base-devel-1.3.10.2-17.el7_9.s390x.rpm SHA-256: d36fa2a234346120f089e9c00bde773f7467f30d7ebb686196038f70d54e7f2d
389-ds-base-libs-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 10355e145c2f57b1e9d31e23ea9f43dc8cd6a6e7fe2ba16acbdeb76e0d1d7cbd
389-ds-base-snmp-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 97d0b74dd311669b751b92fb5c0f57a65e9ff536522111971fbae620d4a33664

Red Hat Enterprise Linux for Power, big endian 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
ppc64
389-ds-base-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: aa0d6fa6bd832cca36f284b33f155f11d361d9839e5ddf583d2b99db01fcf8bc
389-ds-base-debuginfo-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: bc28257db4eda948a6cd61d664c8c2e00e62f3760df9c7831e1aeefb43c16dc8
389-ds-base-devel-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: a9340c4a2690fca22244eebe108940bad4a4650520f468ca3fd5018d1db89b80
389-ds-base-libs-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: a0427e80593c953a86970753a244867278a3de02a3182a8ed1c399cde9eae740
389-ds-base-snmp-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: 16170b290d21572192963bf5f9a1c3a1ddd66074690b3ad73cb172353da55788

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
x86_64
389-ds-base-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: fe412472deadb4cd830c484cc669aa6081dcae42d3be1412888761e1d0ef9c26
389-ds-base-debuginfo-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: f23f7db86f2ccc0e40c208a87d73f5a402fb9f8b4a7e74ec5a35e2cca429a577
389-ds-base-devel-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 4b83b75d530427850160e3fffc4402507162d16a893dc9b5226dafa5d7c42db1
389-ds-base-libs-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 8ab804565ac7e6aba521c90249f9a7efc7d0d3779e41795e284f69033e721a55
389-ds-base-snmp-1.3.10.2-17.el7_9.x86_64.rpm SHA-256: 5b76c5b830a94882a1372610095f5aadd8ab5dbd8bc1bff124849133c1bb3893

Red Hat Enterprise Linux for Power, little endian 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
ppc64le
389-ds-base-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 2798b32623b19bbf7676deb51e055dcdebb723b23adee35049789e82e9e58ef0
389-ds-base-debuginfo-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 21091e7ef912244c926170d0e63d515c19f01719657726bf5d7ab7a8cecd0049
389-ds-base-debuginfo-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 21091e7ef912244c926170d0e63d515c19f01719657726bf5d7ab7a8cecd0049
389-ds-base-devel-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 7945a7d966f91bdabf1c783d40ad9b9f92d352236e2792de29032d11c90c3f3f
389-ds-base-libs-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 17ce61f2e0004576c34622f387d47b347c179faffaa1bea165d8028819ee9b03
389-ds-base-snmp-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: aecda88a3230d57cfc7d17d5e9b3df2ff1e85b56fcb6827e38979b84f6ff2c21

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
s390x
389-ds-base-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 98befa6a824733d61f72bde9ac6dcb4b4f0fad327c23d80d0ef6cf0589580640
389-ds-base-debuginfo-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 4367a9241f29a54ce4bc42affa4427f6012cec33cd349e90ff135088cec94d9b
389-ds-base-devel-1.3.10.2-17.el7_9.s390x.rpm SHA-256: d36fa2a234346120f089e9c00bde773f7467f30d7ebb686196038f70d54e7f2d
389-ds-base-libs-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 10355e145c2f57b1e9d31e23ea9f43dc8cd6a6e7fe2ba16acbdeb76e0d1d7cbd
389-ds-base-snmp-1.3.10.2-17.el7_9.s390x.rpm SHA-256: 97d0b74dd311669b751b92fb5c0f57a65e9ff536522111971fbae620d4a33664

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
ppc64
389-ds-base-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: aa0d6fa6bd832cca36f284b33f155f11d361d9839e5ddf583d2b99db01fcf8bc
389-ds-base-debuginfo-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: bc28257db4eda948a6cd61d664c8c2e00e62f3760df9c7831e1aeefb43c16dc8
389-ds-base-devel-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: a9340c4a2690fca22244eebe108940bad4a4650520f468ca3fd5018d1db89b80
389-ds-base-libs-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: a0427e80593c953a86970753a244867278a3de02a3182a8ed1c399cde9eae740
389-ds-base-snmp-1.3.10.2-17.el7_9.ppc64.rpm SHA-256: 16170b290d21572192963bf5f9a1c3a1ddd66074690b3ad73cb172353da55788

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7

SRPM
389-ds-base-1.3.10.2-17.el7_9.src.rpm SHA-256: ca60ee46feaeea3099b86e5cc879898fb906eb19f158f90cba1a133d77e91c1a
ppc64le
389-ds-base-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 2798b32623b19bbf7676deb51e055dcdebb723b23adee35049789e82e9e58ef0
389-ds-base-debuginfo-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 21091e7ef912244c926170d0e63d515c19f01719657726bf5d7ab7a8cecd0049
389-ds-base-debuginfo-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 21091e7ef912244c926170d0e63d515c19f01719657726bf5d7ab7a8cecd0049
389-ds-base-devel-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 7945a7d966f91bdabf1c783d40ad9b9f92d352236e2792de29032d11c90c3f3f
389-ds-base-libs-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: 17ce61f2e0004576c34622f387d47b347c179faffaa1bea165d8028819ee9b03
389-ds-base-snmp-1.3.10.2-17.el7_9.ppc64le.rpm SHA-256: aecda88a3230d57cfc7d17d5e9b3df2ff1e85b56fcb6827e38979b84f6ff2c21

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.