Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Lightspeed
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Lightspeed
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2026:36205 - Security Advisory
Issued:
2026-07-07
Updated:
2026-07-07

RHSA-2026:36205 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: 389-ds-base security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for 389-ds-base is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.

Security Fix(es):

  • 389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND (CVE-2026-11610)
  • 389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow (CVE-2026-11774)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le

Fixes

  • BZ - 2484414 - CVE-2026-11610 389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND
  • BZ - 2484916 - CVE-2026-11774 389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow

CVEs

  • CVE-2026-11610
  • CVE-2026-11774

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7

SRPM
389-ds-base-1.3.11.1-13.el7_9.src.rpm SHA-256: 24f2b8fb8a0eae2c8fa22aa084e549484ac18eab61f86bc07487fd0e41cd6618
x86_64
389-ds-base-1.3.11.1-13.el7_9.x86_64.rpm SHA-256: d6abbbef6c9163bee7b70e911a22c377755c6e419606cf0f4f0726c9dea379a7
389-ds-base-debuginfo-1.3.11.1-13.el7_9.x86_64.rpm SHA-256: dc0a4f6329dab996670a1c56793d1ddd37925bdc86bbcb990ed5a3bc72aed80a
389-ds-base-debuginfo-1.3.11.1-13.el7_9.x86_64.rpm SHA-256: dc0a4f6329dab996670a1c56793d1ddd37925bdc86bbcb990ed5a3bc72aed80a
389-ds-base-devel-1.3.11.1-13.el7_9.x86_64.rpm SHA-256: af5c6e4e291ffcf725d7c7f7330518edf8d990f7651d957a197a103474381986
389-ds-base-libs-1.3.11.1-13.el7_9.x86_64.rpm SHA-256: 049b77e338019d478964c1942a047e795434a5e6cd5cbf6d6b5c8f315d419981
389-ds-base-snmp-1.3.11.1-13.el7_9.x86_64.rpm SHA-256: ffb5cc1eabc85da21ee78c9e821c41615f7c44238437f58432599b40b47e17ec

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7

SRPM
389-ds-base-1.3.11.1-13.el7_9.src.rpm SHA-256: 24f2b8fb8a0eae2c8fa22aa084e549484ac18eab61f86bc07487fd0e41cd6618
s390x
389-ds-base-1.3.11.1-13.el7_9.s390x.rpm SHA-256: 0a04c47f35cab0743e7cd4c2e60ccae29fe48f6b7abb6a024e34e046f09e2194
389-ds-base-debuginfo-1.3.11.1-13.el7_9.s390x.rpm SHA-256: e2ebe9c7515a7617cce80fcaf4de994a11df9032d2b33d9290c47dcd50a3971e
389-ds-base-devel-1.3.11.1-13.el7_9.s390x.rpm SHA-256: a847a23453beae4d6b4f3db45fdf9467214be7fae00de9d1a6033e30230188da
389-ds-base-libs-1.3.11.1-13.el7_9.s390x.rpm SHA-256: c0f7edf6f0e7f086635876cbe17ee49e4e9d5526fece132430a3491ac691b319
389-ds-base-snmp-1.3.11.1-13.el7_9.s390x.rpm SHA-256: b043943c7ef3fa74cb1e0e607f8fd37d6aa333384d4ed5984ab8449965014f8b

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7

SRPM
389-ds-base-1.3.11.1-13.el7_9.src.rpm SHA-256: 24f2b8fb8a0eae2c8fa22aa084e549484ac18eab61f86bc07487fd0e41cd6618
ppc64
389-ds-base-1.3.11.1-13.el7_9.ppc64.rpm SHA-256: 9b8dc79294920c1a271019d1fdf1a96c85bb8dd8e7ab6da7663b9bdcafe0423f
389-ds-base-debuginfo-1.3.11.1-13.el7_9.ppc64.rpm SHA-256: 8748db88fe66a76c479f740b558db4bf2c8498816ec21bdfd8c6bba00ee54c67
389-ds-base-devel-1.3.11.1-13.el7_9.ppc64.rpm SHA-256: de0bf07e596448caacf3aefa79a52e24443542d4354590c41962a2f47b07eecd
389-ds-base-libs-1.3.11.1-13.el7_9.ppc64.rpm SHA-256: 57282df2f37080ef0d53892274c04c2f9dde414ac54837e101a603acae49eabf
389-ds-base-snmp-1.3.11.1-13.el7_9.ppc64.rpm SHA-256: 433e5bdbeb8e29a5861a0579dc473691095310b4016599ed8cbf7f53541a0645

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7

SRPM
389-ds-base-1.3.11.1-13.el7_9.src.rpm SHA-256: 24f2b8fb8a0eae2c8fa22aa084e549484ac18eab61f86bc07487fd0e41cd6618
ppc64le
389-ds-base-1.3.11.1-13.el7_9.ppc64le.rpm SHA-256: c1119c403403fb8946e6d9dcb83a3c4efdff3d1817504f633b0d7c2cd5fcf862
389-ds-base-debuginfo-1.3.11.1-13.el7_9.ppc64le.rpm SHA-256: 5a6ffc0b3c2658d877275dc641c5545a02190bbfb98d59e6d70a7a8f74d6591f
389-ds-base-debuginfo-1.3.11.1-13.el7_9.ppc64le.rpm SHA-256: 5a6ffc0b3c2658d877275dc641c5545a02190bbfb98d59e6d70a7a8f74d6591f
389-ds-base-devel-1.3.11.1-13.el7_9.ppc64le.rpm SHA-256: 54db9401c339e0ae103fc649fd62016a47c4dd1be96a0b447889b9a41618f811
389-ds-base-libs-1.3.11.1-13.el7_9.ppc64le.rpm SHA-256: 69e85a10e2145cff4358f1a25f327d0494c9e9948ecf5215dbbe09c9d59bef6a
389-ds-base-snmp-1.3.11.1-13.el7_9.ppc64le.rpm SHA-256: 4264549dd195f3d1d1cfa2481d0a18660f1d0d2248c103bc3639ba63760403b6

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2026 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility