CentOS Local Security Checks : CentOS Update for 389-ds-base CESA-2019:1896 centos7

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.883090

Categoría: CentOS Local Security Checks

Título: CentOS Update for 389-ds-base CESA-2019:1896 centos7

Resumen: The remote host is missing an update for the '389-ds-base'; package(s) announced via the CESA-2019:1896 advisory.

Descripción: Summary:
The remote host is missing an update for the '389-ds-base'
package(s) announced via the CESA-2019:1896 advisory.

Vulnerability Insight:
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The
base packages include the Lightweight Directory Access Protocol (LDAP)
server and command-line utilities for server administration.

Security Fix(es):

* 389-ds-base: DoS via hanging secured connections (CVE-2019-3883)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Bug Fix(es):

* Previously, if you were using the PAM plugin and attempted to bind as a
dn that doesn't exist, the server would crash. This has now been fixed.
(BZ#1718184)

Affected Software/OS:
'389-ds-base' package(s) on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-3883
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3883
https://pagure.io/389-ds-base/issue/50329
https://pagure.io/389-ds-base/pull-request/50331
https://lists.debian.org/debian-lts-announce/2019/05/msg00008.html
https://lists.debian.org/debian-lts-announce/2023/04/msg00026.html
RedHat Security Advisories: RHSA-2019:1896
https://access.redhat.com/errata/RHSA-2019:1896
RedHat Security Advisories: RHSA-2019:3401
https://access.redhat.com/errata/RHSA-2019:3401

Copyright Copyright (C) 2019 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.883090
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for 389-ds-base CESA-2019:1896 centos7
Resumen:	The remote host is missing an update for the '389-ds-base'; package(s) announced via the CESA-2019:1896 advisory.
Descripción:	Summary: The remote host is missing an update for the '389-ds-base' package(s) announced via the CESA-2019:1896 advisory. Vulnerability Insight: 389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: DoS via hanging secured connections (CVE-2019-3883) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Previously, if you were using the PAM plugin and attempted to bind as a dn that doesn't exist, the server would crash. This has now been fixed. (BZ#1718184) Affected Software/OS: '389-ds-base' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-3883 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3883 https://pagure.io/389-ds-base/issue/50329 https://pagure.io/389-ds-base/pull-request/50331 https://lists.debian.org/debian-lts-announce/2019/05/msg00008.html https://lists.debian.org/debian-lts-announce/2023/04/msg00026.html RedHat Security Advisories: RHSA-2019:1896 https://access.redhat.com/errata/RHSA-2019:1896 RedHat Security Advisories: RHSA-2019:3401 https://access.redhat.com/errata/RHSA-2019:3401
Copyright	Copyright (C) 2019 Greenbone AG