[El-errata] ELSA-2012-0997 Moderate: Oracle Linux 6 389-ds-base security update

Sat Jun 30 15:41:25 PDT 2012

Oracle Linux Security Advisory ELSA-2012-0997

https://rhn.redhat.com/errata/RHSA-2012-0997.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
389-ds-base-1.2.10.2-18.el6_3.i686.rpm
389-ds-base-devel-1.2.10.2-18.el6_3.i686.rpm
389-ds-base-libs-1.2.10.2-18.el6_3.i686.rpm

x86_64:
389-ds-base-1.2.10.2-18.el6_3.x86_64.rpm
389-ds-base-devel-1.2.10.2-18.el6_3.i686.rpm
389-ds-base-devel-1.2.10.2-18.el6_3.x86_64.rpm
389-ds-base-libs-1.2.10.2-18.el6_3.i686.rpm
389-ds-base-libs-1.2.10.2-18.el6_3.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/389-ds-base-1.2.10.2-18.el6_3.src.rpm

Description of changes:

[1.2.10.2-18]
- Resolves: Bug 830001 - unhashed#user#password visible after changing 
password
-- patch 0020 disallows users' direct modify on unhashed#user#password

[1.2.10.2-17]
- Resolves: Bug 830001 - unhashed#user#password visible after changing 
password
-- patch 0019 fixes deref issue.

[1.2.10.2-16]
- Resolves: Bug 830001 - unhashed#user#password visible after changing 
password
- Resolves: Bug 830256 - Audit log - clear text password in user changes