[CLSA-2026:1783596522] 389-ds-base: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-09 11:28:58 UTC
Description:
- CVE-2026-11610: fix heap buffer overflow in sasl_io_recv via oversized unencrypted UNBIND - CVE-2026-11774: fix integer overflow in sasl_io_start_packet packet length handling
Updated packages:
  • 389-ds-base-2.6.1-12.el9_6.tuxcare.els3.x86_64.rpm
    sha:0d6449de669c031bb42bdd015f3dae5084cbe43301ef9f93768eaa872cfa466f
  • 389-ds-base-devel-2.6.1-12.el9_6.tuxcare.els3.x86_64.rpm
    sha:10b0dea2bb94e1096188347cba5a42358a42a8b77e5034bad1a681c03b7b6e4d
  • 389-ds-base-libs-2.6.1-12.el9_6.tuxcare.els3.x86_64.rpm
    sha:b7404e220129e777dfbfafade14e9bed39bdb7766845197dbaab70f9b908c245
  • 389-ds-base-snmp-2.6.1-12.el9_6.tuxcare.els3.x86_64.rpm
    sha:5e3f2b52ef0e46981ddbc36708cd6564f51320be4cfa049591a088f88682804b
  • python3-lib389-2.6.1-12.el9_6.tuxcare.els3.noarch.rpm
    sha:52eeefa512758173f71a10246e0b9bf9a4489cb56ef95865392034c951c4ccca
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.