Issued:
2011-05-23
Updated:
2011-05-23

RHBA-2011:0824 - 389-ds-base bug fix update

Synopsis

389-ds-base bug fix update

Type/Severity

Bug Fix Advisory

Topic

Updated 389-ds-base packages that fix multiple bugs are now available.

Description

389 Directory Server is an LDAPv3 compliant server. The base package includes the LDAP server and command-line utilities for server administration.

Bugs fixed in this updated package include:

  • Password changes did not replicate because the method used to pass the changes to consumer servers was rejected on the consumer. This issue has been corrected, and password changes now replicate as expected. (BZ#701554)

  • Values could be lost when group memberships were synchronized between 389 Directory Server and Active Directory with the Windows Sync feature. The synchronization and modify operations have been altered to prevent this issue, allowing group updates to synchronize with Active Directory. (BZ#701556)

  • The ldclt command-line testing tool crashed during LDAP ADD operations because an LDAP attribute was not set correctly, preventing the creation of entries that did not already exist. This update allows the LDAP ADD to proceed correctly. (BZ#701558)

  • The server crashed if a long running task was started using the cn=tasks,cn=config interface and then the server was shut down before the task completed. This update prevents the server from crashing, but does not gracefully terminate the task, which can leave the server database in an inconsistent state. For example, the fixup-memberof.pl script invokes a tasks to fix up the memberOf attribute in group member entries. If the server is shut down before the task can complete, some entries may not have the correct memberOf values. Users should ensure that tasks are complete before shutting down the server to avoid inconsistency. (BZ#701559)

  • When using the Entry USN feature, deleting an entry caused a memory leak via the entryusn attribute. This update fixes the memory leak. (BZ#701560)

All 389-ds-base users are advised to upgrade to these updated packages, which addresses these issues.

Solution

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.http://access.redhat.com/kb/docs/DOC-11259

Affected Products

ProductVersionArch
Red Hat Virtual Storage Appliance (from RHUI)6.1x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support6.1x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support6.1i386
Red Hat Enterprise Linux Server6x86_64
Red Hat Enterprise Linux Server6i386
Red Hat Enterprise Linux Server from RHUI6x86_64
Red Hat Enterprise Linux Server from RHUI6i386
Red Hat Enterprise Linux Server - Retired Extended Life Cycle Support6x86_64
Red Hat Enterprise Linux Server - Extended Update Support from RHUI6.1x86_64
Red Hat Enterprise Linux Server - Extended Update Support from RHUI6.1i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support6x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support6i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension6x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension6i386

Updated Packages

  • 389-ds-base-1.2.8.2-1.el6_1.3.i686.rpm
  • 389-ds-base-1.2.8.2-1.el6_1.3.src.rpm
  • 389-ds-base-devel-1.2.8.2-1.el6_1.3.x86_64.rpm
  • 389-ds-base-debuginfo-1.2.8.2-1.el6_1.3.x86_64.rpm
  • 389-ds-base-libs-1.2.8.2-1.el6_1.3.x86_64.rpm
  • 389-ds-base-debuginfo-1.2.8.2-1.el6_1.3.i686.rpm
  • 389-ds-base-1.2.8.2-1.el6_1.3.x86_64.rpm
  • 389-ds-base-devel-1.2.8.2-1.el6_1.3.i686.rpm
  • 389-ds-base-libs-1.2.8.2-1.el6_1.3.i686.rpm

Fixes

CVEs

(none)

References

(none)

Additional information