Issued:: 2026-03-24
Updated:: 2026-03-24

RHSA-2026:5514 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: redhat-ds:11 security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.9 for RHEL 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol (LDAP) server, as well as command-line utilities and Web UI packages for server administration.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Directory Server 11.9 for RHEL 8 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Directory Server 11.9 x86_64

Fixes

BZ - 2423624 - CVE-2025-14905 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow

CVEs

CVE-2025-14905

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Directory Server 11.9

SRPM
389-ds-base-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.src.rpm	SHA-256: aa798d07706e1be6bee97bc0edde708be678abfe02cab9b4dd83b7b7c9285214
x86_64
389-ds-base-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: b3d34ccf493849e4ad3e50fbd732d83223eff7b7cdb024cc5de7af5960462523
389-ds-base-debuginfo-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: 8583605c8c41cad7d900e8464f68f8d651564fb1e58e54c7cd1f88fae4137545
389-ds-base-debugsource-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: 9b68e511229fc62042ff3ab68b93237b0e8c29f5431cb82f414dab1266c204f5
389-ds-base-devel-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: c004e83455cf516f68f596c30c8aeea674806a50b5d886d807c1920aed69a734
389-ds-base-legacy-tools-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: 49a06cc5bfe94f60be4fb2dab8a11341fdea9d60245534f89d865e89ef2c307a
389-ds-base-legacy-tools-debuginfo-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: 203623405c8f1e3711d3c2968914766a07211c8b1615ea7eb81b128c6d84d342
389-ds-base-libs-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: d819b2de1b498b61d3835aadaf31169fed5d0edaec61d3ad6489ff2d1f612dbb
389-ds-base-libs-debuginfo-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: 381eb444b783f5a8bf2d98685850713303a06bd2437cb60302b763407dd39ac5
389-ds-base-snmp-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: f61b30bc9867fa4e4156dea0c38743facb7118d477c12303232a782abce93e6a
389-ds-base-snmp-debuginfo-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.x86_64.rpm	SHA-256: 37b43a5a69bfde135e27721fbf967ee6a51f029480ad23d75f85cf6e274933e3
cockpit-389-ds-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.noarch.rpm	SHA-256: 29954d364cb9374d2387a09e236c8d14044c72668ff7ce1bcc6689d3f28b9a71
python3-lib389-1.4.3.39-21.module+el8dsrv+24083+d25fcbb4.noarch.rpm	SHA-256: 8ee28f7b6c0e9a420e5c1b6f8ff8214ab1b57083661cb1009d3b32652080a0d6

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation