{"id":"ALSA-2026:26455","summary":"Important: 389-ds-base security, bug fix, and enhancement update","details":"389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.  \n\nSecurity Fix(es):  \n\n  * 389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS) (CVE-2026-9064)\n\n\nBug Fix(es) and Enhancement(s):  \n\n  * Getting \"build_candidate_list - Database error 11\" messages after migrating to LMDB. [almalinux-9.8.z] (JIRA:AlmaLinux-152356)\n  * Web console doesn't show the sub suffix of ou=foo,ou=people,dc=example,dc=com. [almalinux-9.8.z] (JIRA:AlmaLinux-168967)\n  * DS 12 does not handle escape char in bind user [almalinux-9.8.z] (JIRA:AlmaLinux-170269)\n  * [RFE] Add OS-level thread names to all server threads [almalinux-9.8.z] (JIRA:AlmaLinux-174524)\n  * Online export is failing when using the option \"-s\" [almalinux-9.8.z] (JIRA:AlmaLinux-180716)\n  * Server shutdown during online reindex may lead to data loss [almalinux-9.8.z] (JIRA:AlmaLinux-183895)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n","modified":"2026-07-02T13:30:05.889059604Z","published":"2026-06-17T00:00:00Z","related":["CVE-2026-9064"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:26455"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-9064"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2480093"},{"type":"ADVISORY","url":"https://errata.almalinux.org/9/ALSA-2026-26455.html"}],"affected":[{"package":{"name":"389-ds-base","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/389-ds-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.0-7.el9_8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:26455.json"}},{"package":{"name":"389-ds-base-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/389-ds-base-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.0-7.el9_8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:26455.json"}},{"package":{"name":"389-ds-base-libs","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/389-ds-base-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.0-7.el9_8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:26455.json"}},{"package":{"name":"389-ds-base-snmp","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/389-ds-base-snmp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.0-7.el9_8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:26455.json"}},{"package":{"name":"python3-lib389","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/python3-lib389"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.0-7.el9_8"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:26455.json"}}],"schema_version":"1.7.5"}