Scientific Linux Security Update : 389-ds-base on SL6.x i386/x86_64

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The remote Scientific Linux host is missing one or more security
updates.

Description :

Security Fix(es) :

- It was found that 389 Directory Server was vulnerable to
a flaw in which the default ACI (Access Control
Instructions) could be read by an anonymous user. This
could lead to leakage of sensitive information.
(CVE-2016-5416)

- An information disclosure flaw was found in 389
Directory Server. A user with no access to objects in
certain LDAP sub-tree could send LDAP ADD operations
with a specific object name. The error message returned
to the user was different based on whether the target
object existed or not. (CVE-2016-4992)

- It was found that 389 Directory Server was vulnerable to
a remote password disclosure via timing attack. A remote
attacker could possibly use this flaw to retrieve
directory server password after many tries.
(CVE-2016-5405)

Bug Fix(es) :

- Previously, a bug in the changelog iterator buffer
caused it to point to an incorrect position when
reloading the buffer. This caused replication to skip
parts of the changelog, and consequently some changes
were not replicated. This bug has been fixed, and
replication data loss due to an incorrectly reloaded
changelog buffer no longer occurs.

- Previously, if internal modifications were generated on
a consumer (for example by the Account Policy plug-in)
and additional changes to the same attributes were
received from replication, a bug caused Directory Server
to accumulate state information on the consumer. The bug
has been fixed by making sure that replace operations
are only applied if they are newer than existing
attribute deletion change sequence numbers (CSNs), and
state information no longer accumulates in this
situation.

Enhancement(s) :

- In a multi-master replication environment where multiple
masters receive updates at the same time, it was
previously possible for a single master to obtain
exclusive access to a replica and hold it for a very
long time due to problems such as a slow network
connection. During this time, other masters were blocked
from accessing the same replica, which considerably
slowed down the replication process. This update adds a
new configuration attribute,
'nsds5ReplicaReleaseTimeout', which can be used to
specify a timeout in seconds. After the specified
timeout period passes, the master releases the replica,
allowing other masters to access it and send their
updates.

See also :

http://www.nessus.org/u?ec5c6d18

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: Scientific Linux Local Security Checks

Nessus Plugin ID: 95049 ()

Bugtraq ID:

CVE ID: CVE-2016-4992
CVE-2016-5405
CVE-2016-5416

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now