Red Hat Product Errata RHSA-2026:26454 - Security Advisory
Issued:
2026-06-17
Updated:
2026-06-17

RHSA-2026:26454 - Security Advisory

Synopsis

Important: 389-ds:1.4 security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for the 389-ds:1.4 module is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.

Security Fix(es):

  • 389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS) (CVE-2026-9064)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64

Fixes

  • BZ - 2480093 - CVE-2026-9064 389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS)

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8

SRPM
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.src.rpm SHA-256: 7e24cfbea87948de77ce107ee5c4bbd99a2065a643cc05c08e755b283ec80001
x86_64
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: e700f2515a458d35145f025a169f0f6875325dca17a55952e901cd45be74e14f
389-ds-base-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 99d5c2bc67d8e9102d64386d9dea8e58c39e8488e30f0e529e160c4838369eac
389-ds-base-debugsource-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: ebee3be97f660c3635da2057b372f94ff68fe123dd00a0ab805f457bdb112b60
389-ds-base-devel-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 4bab4455411fff34e778f71464dbc5d1531ca8258838f925f717a3238854f250
389-ds-base-legacy-tools-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 142c347e0e44054477468ac9e451065bd5647348e771af70296a64f89ae30824
389-ds-base-legacy-tools-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 2d31afa2e0714293146cdca7ba24b8759f89ef7e292c79db449eedcabb3ecab4
389-ds-base-libs-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: b5c7fab027bbf7a7d5d3fd48997e617263dd223ac6976031717d62e45df5d586
389-ds-base-libs-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 7e2d4970751c33cb35657decd68feb5898ab9ade09149e87ecebd9dc4e139137
389-ds-base-snmp-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: e67dc7acbdc753454f96cf47a91de90ececb9633f41603fd75c70eaa5cfc5a60
389-ds-base-snmp-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 0e875a171b60c96964af75be7000bd9fd3c5fbd2213340f12b10ac6b9ae1761e
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.src.rpm SHA-256: 7e24cfbea87948de77ce107ee5c4bbd99a2065a643cc05c08e755b283ec80001
x86_64
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: e700f2515a458d35145f025a169f0f6875325dca17a55952e901cd45be74e14f
389-ds-base-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 99d5c2bc67d8e9102d64386d9dea8e58c39e8488e30f0e529e160c4838369eac
389-ds-base-debugsource-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: ebee3be97f660c3635da2057b372f94ff68fe123dd00a0ab805f457bdb112b60
389-ds-base-devel-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 4bab4455411fff34e778f71464dbc5d1531ca8258838f925f717a3238854f250
389-ds-base-legacy-tools-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 142c347e0e44054477468ac9e451065bd5647348e771af70296a64f89ae30824
389-ds-base-legacy-tools-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 2d31afa2e0714293146cdca7ba24b8759f89ef7e292c79db449eedcabb3ecab4
389-ds-base-libs-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: b5c7fab027bbf7a7d5d3fd48997e617263dd223ac6976031717d62e45df5d586
389-ds-base-libs-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 7e2d4970751c33cb35657decd68feb5898ab9ade09149e87ecebd9dc4e139137
389-ds-base-snmp-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: e67dc7acbdc753454f96cf47a91de90ececb9633f41603fd75c70eaa5cfc5a60
389-ds-base-snmp-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 0e875a171b60c96964af75be7000bd9fd3c5fbd2213340f12b10ac6b9ae1761e
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.src.rpm SHA-256: 7e24cfbea87948de77ce107ee5c4bbd99a2065a643cc05c08e755b283ec80001
ppc64le
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 52e4855f1cdd57639452373e2bb5f44597a23062800a5325f2db1f00cc2f3db3
389-ds-base-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 30ada3c521e791c0c260ede8d5bf058127eca184fc0597304315397861049559
389-ds-base-debugsource-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: bc7d2accc6ec295f974817214869b4fc30d6c9a164bebe931b1be28edc6aec00
389-ds-base-devel-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 6b286e800ff8f111438b740714abf33ed4052d78783341aff29145cf2b812cf2
389-ds-base-legacy-tools-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 5a1c91a6407adfe9bb0d4bab516888e220b6d1bf10d09deb67a5aeaed53b9c47
389-ds-base-legacy-tools-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: b9ee18057e1c7943f1c62ef9f6bb025208f19084653ed9424a49ec0df2cbb4c9
389-ds-base-libs-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 41d17c7ac5e333b372659346f94edb18c15f8736b169eaaf58afc34cafb4eda7
389-ds-base-libs-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 3e78c5af4eca7a81d9e2b9e270f9f2181ed545879b080506d20e8b2366ce47bf
389-ds-base-snmp-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 450f006e74704fed319a7b68d5ce17650e9d8ed888973a87d9558bfbae9ea715
389-ds-base-snmp-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.ppc64le.rpm SHA-256: 55e9c4c2403290657de9ade51faff3f7840cf0ba7bb273cdb93d6a3d06528472
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.src.rpm SHA-256: 7e24cfbea87948de77ce107ee5c4bbd99a2065a643cc05c08e755b283ec80001
x86_64
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab
389-ds-base-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: e700f2515a458d35145f025a169f0f6875325dca17a55952e901cd45be74e14f
389-ds-base-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 99d5c2bc67d8e9102d64386d9dea8e58c39e8488e30f0e529e160c4838369eac
389-ds-base-debugsource-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: ebee3be97f660c3635da2057b372f94ff68fe123dd00a0ab805f457bdb112b60
389-ds-base-devel-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 4bab4455411fff34e778f71464dbc5d1531ca8258838f925f717a3238854f250
389-ds-base-legacy-tools-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 142c347e0e44054477468ac9e451065bd5647348e771af70296a64f89ae30824
389-ds-base-legacy-tools-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 2d31afa2e0714293146cdca7ba24b8759f89ef7e292c79db449eedcabb3ecab4
389-ds-base-libs-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: b5c7fab027bbf7a7d5d3fd48997e617263dd223ac6976031717d62e45df5d586
389-ds-base-libs-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 7e2d4970751c33cb35657decd68feb5898ab9ade09149e87ecebd9dc4e139137
389-ds-base-snmp-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: e67dc7acbdc753454f96cf47a91de90ececb9633f41603fd75c70eaa5cfc5a60
389-ds-base-snmp-debuginfo-1.4.3.35-18.module+el8.8.0+24377+19c5500b.x86_64.rpm SHA-256: 0e875a171b60c96964af75be7000bd9fd3c5fbd2213340f12b10ac6b9ae1761e
python3-lib389-1.4.3.35-18.module+el8.8.0+24377+19c5500b.noarch.rpm SHA-256: 51c57ec387d65a3fae8771c369942c0ab1f527afa6ae72f9c29ef0621f5831ab

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.