[ol7_latest] 389-ds-base-libs-1.3.11.1-5.el7_9.aarch64

Core libraries for the 389 Directory Server base package.  These libraries
are used by the main package and the -devel package.  This allows the -devel
package to be installed with just the -libs package and without the main package.

Changelog (Show File list) (Show related packages)

• Wed Apr 24 2024 James Chapman <jachapma@redhat.com> - 1.3.11.1-5

  - Bump version to 1.3.11.1-5
  - Resolves: RHEL-33337 - redhat-ds:11/389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request
  - Resolves: RHEL-34817 - redhat-ds:11/389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c

• Wed Dec 13 2023 Thierry Bordaz <tbordaz@redhat.com> - 1.3.11.1-4

  - Bump version to 1.3.11.1-4
  - Resolves: RHEL-17332 - ns-slapd crash in slapi_attr_basetype

• Mon Aug 14 2023 Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-3

  - Bump version to 1.3.11.1-3
  - Resolves: rhbz#2224507 - Paged search impacts performance

• Tue May 23 2023 Mark Reynolds <mreynolds@redhat.com> - 1.3.11.1-2

  - Bump version to 1.3.11.1-2
  - Resolves: Bug 2170224 - Fix upgrade scripts and version string

• Tue Feb 21 2023 Simon Pichugin <spichugi@redhat.com> - 1.3.11.1-1

  - Bump version to 1.3.11.1-1
  - Resolves: Bug 2170224 - Backport Rust password storage PBKDF2 schemes
  - Resolves: Bug 2170221 - Boolean attributes should be case insensitive
  - Resolves: Bug 2170218 - Slow memberof fixup task for large static groups, high CPU use

• Fri Sep 30 2022 Mark Reynolds <mreynolds@redhat.com> - 1.3.10-2-17

  - Bump version to 1.3.10.2-17
  - Resolves: Bug 2113056 - Import may break replication because changelog starting csn may not be created
  - Resolves: Bug 2131083 - SIGSEGV in sync_repl

• Tue Jun 07 2022 Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-16

  - Bump version to 1.3.10.2-16
  - Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS
  - Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log
  - Resolves: Bug 2018153 - RFE - Provide an option to abort an Auto Member rebuild task
  - Resolves: Bug 2093294 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database

• Thu Feb 03 2022 Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-15

  - Bump version to 1.3.10.2-15
  - Resolves: Bug 2049812 - Fix csn generator to limit time skew drift
  - Resolves: Bug 2048530 - CVE-2021-4091 389-ds-base: double-free of the virtual attribute context in persistent search

• Fri Oct 29 2021 Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-14

  - Bump version to 1.3.10.2-14
  - Resolves: Bug 2018257 - hang because of incorrect accounting of readers in vattr rwlock
  - Resolves: Bug 2010976 - IPA server (389ds) is very slow in execution of some searches (`&(memberOf=...)(objectClass=ipaHost)` in particular)

• Mon Sep 20 2021 Thierry Bordaz <tbordaz@redhat.com> - 1.3.10.2-13

  - Bump version to 1.3.10.2-13
  - Resolves: Bug 2005399 - Internal unindexed searches in syncrepl
  - Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed
  - Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context.
  - Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule