[Apollo] Advisories Statistics light light Login

RLSA-2026:36201

Security Mirrored from RHSA-2026:36201
Issued at: 2026-07-09
Updated at: 2026-07-09

Synopsis

Important: 389-ds:1.4 security update



Description

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.

Security Fix(es):

* 389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND (CVE-2026-11610)

* 389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow (CVE-2026-11774)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2484414 2484916

CVEs

CVE-2026-11610 CVE-2026-11774

Affected packages

Rocky Linux 8 aarch64 - AppStream

389-ds-base-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-0:1.4.3.39-25.module+el8.10.0+40233+16963435.src.rpm 389-ds-base-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-debugsource-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-devel-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-legacy-tools-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-legacy-tools-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-libs-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-libs-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-snmp-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm 389-ds-base-snmp-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.aarch64.rpm python3-lib389-0:1.4.3.39-25.module+el8.10.0+40233+16963435.noarch.rpm

Rocky Linux 8 x86_64 - AppStream

389-ds-base-0:1.4.3.39-25.module+el8.10.0+40233+16963435.src.rpm 389-ds-base-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-debugsource-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-devel-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-legacy-tools-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-legacy-tools-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-libs-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-libs-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-snmp-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm 389-ds-base-snmp-debuginfo-0:1.4.3.39-25.module+el8.10.0+40233+16963435.x86_64.rpm python3-lib389-0:1.4.3.39-25.module+el8.10.0+40233+16963435.noarch.rpm