cvelistv5 - cve-2016-4992

CVE-2016-4992 (GCVE-0-2016-4992)

Vulnerability from cvelistv5

Published

2017-06-08 19:00

Modified

2024-08-06 00:46

Severity ?

CWE

Summary

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects.

References

►

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

ghsa-wm9r-q6g4-j33r

Vulnerability from github

Published

2022-05-17 02:40

Modified

2022-05-17 02:40

Severity ?

7.5 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-4992"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-06-08T19:29:00Z",
    "severity": "HIGH"
  },
  "details": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects.",
  "id": "GHSA-wm9r-q6g4-j33r",
  "modified": "2022-05-17T02:40:59Z",
  "published": "2022-05-17T02:40:59Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4992"
    },
    {
      "type": "WEB",
      "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2016:2594"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2016:2765"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2016-4992"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2594.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2765.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

fkie_cve-2016-4992

Vulnerability from fkie_nvd

Published

2017-06-08 19:29

Modified

2025-04-20 01:37

Severity ?

7.5 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

URL	Tags
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2016-2594.html	Vendor Advisory
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2016-2765.html	Vendor Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=1347760	Issue Tracking, Vendor Advisory
secalert@redhat.com	https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2016-2594.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2016-2765.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=1347760	Issue Tracking, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1

Impacted products

Vendor	Product	Version
redhat	enterprise_linux_desktop	6.0
redhat	enterprise_linux_desktop	7.0
redhat	enterprise_linux_hpc_node	6.0
redhat	enterprise_linux_hpc_node	7.0
redhat	enterprise_linux_server	6.0
redhat	enterprise_linux_server	7.0
redhat	enterprise_linux_workstation	6.0
redhat	enterprise_linux_workstation	7.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2FAC325-6EEB-466D-9EBA-8ED4DBC9CFBF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C84489B-B08C-4854-8A12-D01B6E45CF79",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects."
    },
    {
      "lang": "es",
      "value": "Servidor de directorios en Red Hat Enterprise Linux de escritorio 6 a 7, Red Hat Enterprise Linux HPC de nodo 6 a 7, Servidor 6 a 7 de Red Hat Enterprise Linux y Red Hat Enterprise Linux Estaci\u00f3n de trabajo 6 a 7 permite a atacantes remotos inferir la existencia del componente RDN objetos."
    }
  ],
  "id": "CVE-2016-4992",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-06-08T19:29:00.260",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2594.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2765.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Vendor Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2594.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2765.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Vendor Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

rhsa-2016:2594

Vulnerability from csaf_redhat

Published

2016-11-03 08:11

Modified

2024-11-22 10:05

Summary

Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update

Notes

Topic

An update for 389-ds-base is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. The following packages have been upgraded to a newer upstream version: 389-ds-base (1.3.5.10). (BZ#1270020) Security Fix(es): * It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI (Access Control Instructions) could be read by an anonymous user. This could lead to leakage of sensitive information. (CVE-2016-5416) * An information disclosure flaw was found in 389 Directory Server. A user with no access to objects in certain LDAP sub-tree could send LDAP ADD operations with a specific object name. The error message returned to the user was different based on whether the target object existed or not. (CVE-2016-4992) * It was found that 389 Directory Server was vulnerable to a remote password disclosure via timing attack. A remote attacker could possibly use this flaw to retrieve directory server password after many tries. (CVE-2016-5405) The CVE-2016-5416 issue was discovered by Viktor Ashirov (Red Hat); the CVE-2016-4992 issue was discovered by Petr Spacek (Red Hat) and Martin Basti (Red Hat); and the CVE-2016-5405 issue was discovered by William Brown (Red Hat). Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for 389-ds-base is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.\n\nThe following packages have been upgraded to a newer upstream version: 389-ds-base (1.3.5.10). (BZ#1270020)\n\nSecurity Fix(es):\n\n* It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI (Access Control Instructions) could be read by an anonymous user. This could lead to leakage of sensitive information. (CVE-2016-5416)\n\n* An information disclosure flaw was found in 389 Directory Server. A user with no access to objects in certain LDAP sub-tree could send LDAP ADD operations with a specific object name. The error message returned to the user was different based on whether the target object existed or not. (CVE-2016-4992)\n\n* It was found that 389 Directory Server was vulnerable to a remote password disclosure via timing attack. A remote attacker could possibly use this flaw to retrieve directory server password after many tries. (CVE-2016-5405)\n\nThe CVE-2016-5416 issue was discovered by Viktor Ashirov (Red Hat); the CVE-2016-4992 issue was discovered by Petr Spacek (Red Hat) and Martin Basti (Red Hat); and the CVE-2016-5405 issue was discovered by William Brown (Red Hat).\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2016:2594",
        "url": "https://access.redhat.com/errata/RHSA-2016:2594"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.3_Release_Notes/index.html",
        "url": "https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.3_Release_Notes/index.html"
      },
      {
        "category": "external",
        "summary": "190862",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=190862"
      },
      {
        "category": "external",
        "summary": "1018944",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018944"
      },
      {
        "category": "external",
        "summary": "1143066",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1143066"
      },
      {
        "category": "external",
        "summary": "1160902",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1160902"
      },
      {
        "category": "external",
        "summary": "1196282",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1196282"
      },
      {
        "category": "external",
        "summary": "1209128",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1209128"
      },
      {
        "category": "external",
        "summary": "1210842",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1210842"
      },
      {
        "category": "external",
        "summary": "1223510",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1223510"
      },
      {
        "category": "external",
        "summary": "1229799",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1229799"
      },
      {
        "category": "external",
        "summary": "1249908",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1249908"
      },
      {
        "category": "external",
        "summary": "1254887",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1254887"
      },
      {
        "category": "external",
        "summary": "1255557",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255557"
      },
      {
        "category": "external",
        "summary": "1257568",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1257568"
      },
      {
        "category": "external",
        "summary": "1258610",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1258610"
      },
      {
        "category": "external",
        "summary": "1258611",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1258611"
      },
      {
        "category": "external",
        "summary": "1259950",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1259950"
      },
      {
        "category": "external",
        "summary": "1266510",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1266510"
      },
      {
        "category": "external",
        "summary": "1266532",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1266532"
      },
      {
        "category": "external",
        "summary": "1267750",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1267750"
      },
      {
        "category": "external",
        "summary": "1269378",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1269378"
      },
      {
        "category": "external",
        "summary": "1270020",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1270020"
      },
      {
        "category": "external",
        "summary": "1271330",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1271330"
      },
      {
        "category": "external",
        "summary": "1273142",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1273142"
      },
      {
        "category": "external",
        "summary": "1273549",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1273549"
      },
      {
        "category": "external",
        "summary": "1273550",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1273550"
      },
      {
        "category": "external",
        "summary": "1273555",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1273555"
      },
      {
        "category": "external",
        "summary": "1275763",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1275763"
      },
      {
        "category": "external",
        "summary": "1278567",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1278567"
      },
      {
        "category": "external",
        "summary": "1278584",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1278584"
      },
      {
        "category": "external",
        "summary": "1278755",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1278755"
      },
      {
        "category": "external",
        "summary": "1278987",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1278987"
      },
      {
        "category": "external",
        "summary": "1280123",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1280123"
      },
      {
        "category": "external",
        "summary": "1280456",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1280456"
      },
      {
        "category": "external",
        "summary": "1288229",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1288229"
      },
      {
        "category": "external",
        "summary": "1290101",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1290101"
      },
      {
        "category": "external",
        "summary": "1290111",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1290111"
      },
      {
        "category": "external",
        "summary": "1290141",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1290141"
      },
      {
        "category": "external",
        "summary": "1290242",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1290242"
      },
      {
        "category": "external",
        "summary": "1290600",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1290600"
      },
      {
        "category": "external",
        "summary": "1296310",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1296310"
      },
      {
        "category": "external",
        "summary": "1301097",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1301097"
      },
      {
        "category": "external",
        "summary": "1302823",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1302823"
      },
      {
        "category": "external",
        "summary": "1303641",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1303641"
      },
      {
        "category": "external",
        "summary": "1303794",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1303794"
      },
      {
        "category": "external",
        "summary": "1304682",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1304682"
      },
      {
        "category": "external",
        "summary": "1307151",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1307151"
      },
      {
        "category": "external",
        "summary": "1310848",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310848"
      },
      {
        "category": "external",
        "summary": "1312557",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1312557"
      },
      {
        "category": "external",
        "summary": "1314557",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1314557"
      },
      {
        "category": "external",
        "summary": "1314956",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1314956"
      },
      {
        "category": "external",
        "summary": "1315893",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1315893"
      },
      {
        "category": "external",
        "summary": "1316328",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316328"
      },
      {
        "category": "external",
        "summary": "1316580",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316580"
      },
      {
        "category": "external",
        "summary": "1316731",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316731"
      },
      {
        "category": "external",
        "summary": "1316741",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316741"
      },
      {
        "category": "external",
        "summary": "1316742",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1316742"
      },
      {
        "category": "external",
        "summary": "1319329",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1319329"
      },
      {
        "category": "external",
        "summary": "1320295",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1320295"
      },
      {
        "category": "external",
        "summary": "1320715",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1320715"
      },
      {
        "category": "external",
        "summary": "1321124",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1321124"
      },
      {
        "category": "external",
        "summary": "1326077",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326077"
      },
      {
        "category": "external",
        "summary": "1326520",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1326520"
      },
      {
        "category": "external",
        "summary": "1328936",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1328936"
      },
      {
        "category": "external",
        "summary": "1329061",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1329061"
      },
      {
        "category": "external",
        "summary": "1331343",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1331343"
      },
      {
        "category": "external",
        "summary": "1332533",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1332533"
      },
      {
        "category": "external",
        "summary": "1332709",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1332709"
      },
      {
        "category": "external",
        "summary": "1333184",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1333184"
      },
      {
        "category": "external",
        "summary": "1333515",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1333515"
      },
      {
        "category": "external",
        "summary": "1334455",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1334455"
      },
      {
        "category": "external",
        "summary": "1335492",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335492"
      },
      {
        "category": "external",
        "summary": "1335618",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1335618"
      },
      {
        "category": "external",
        "summary": "1338872",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1338872"
      },
      {
        "category": "external",
        "summary": "1340307",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1340307"
      },
      {
        "category": "external",
        "summary": "1342609",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1342609"
      },
      {
        "category": "external",
        "summary": "1344414",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1344414"
      },
      {
        "category": "external",
        "summary": "1347760",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
      },
      {
        "category": "external",
        "summary": "1349540",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349540"
      },
      {
        "category": "external",
        "summary": "1349571",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349571"
      },
      {
        "category": "external",
        "summary": "1349577",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349577"
      },
      {
        "category": "external",
        "summary": "1350632",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1350632"
      },
      {
        "category": "external",
        "summary": "1353592",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1353592"
      },
      {
        "category": "external",
        "summary": "1353629",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1353629"
      },
      {
        "category": "external",
        "summary": "1353714",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1353714"
      },
      {
        "category": "external",
        "summary": "1354374",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1354374"
      },
      {
        "category": "external",
        "summary": "1354660",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1354660"
      },
      {
        "category": "external",
        "summary": "1355879",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1355879"
      },
      {
        "category": "external",
        "summary": "1356261",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1356261"
      },
      {
        "category": "external",
        "summary": "1358865",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358865"
      },
      {
        "category": "external",
        "summary": "1360327",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1360327"
      },
      {
        "category": "external",
        "summary": "1360447",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1360447"
      },
      {
        "category": "external",
        "summary": "1361134",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1361134"
      },
      {
        "category": "external",
        "summary": "1361321",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1361321"
      },
      {
        "category": "external",
        "summary": "1364190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1364190"
      },
      {
        "category": "external",
        "summary": "1368520",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1368520"
      },
      {
        "category": "external",
        "summary": "1368956",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1368956"
      },
      {
        "category": "external",
        "summary": "1369537",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369537"
      },
      {
        "category": "external",
        "summary": "1369570",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369570"
      },
      {
        "category": "external",
        "summary": "1370300",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370300"
      },
      {
        "category": "external",
        "summary": "1371283",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1371283"
      },
      {
        "category": "external",
        "summary": "1371284",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1371284"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2594.json"
      }
    ],
    "title": "Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-22T10:05:05+00:00",
      "generator": {
        "date": "2024-11-22T10:05:05+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2016:2594",
      "initial_release_date": "2016-11-03T08:11:08+00:00",
      "revision_history": [
        {
          "date": "2016-11-03T08:11:08+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2016-11-03T08:11:08+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T10:05:05+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Client Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Client Optional (v. 7)",
                  "product_id": "7Client-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
                  "product_id": "7ComputeNode-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7)",
                  "product_id": "7Server",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 7)",
                  "product_id": "7Server-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                  "product_id": "7Workstation",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
                  "product_id": "7Workstation-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
                "product": {
                  "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
                  "product_id": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.3.5.10-11.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
                "product": {
                  "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
                  "product_id": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-debuginfo@1.3.5.10-11.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
                "product": {
                  "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
                  "product_id": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-snmp@1.3.5.10-11.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
                "product": {
                  "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
                  "product_id": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-devel@1.3.5.10-11.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
                "product": {
                  "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
                  "product_id": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-libs@1.3.5.10-11.el7?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.3.5.10-11.el7.src",
                "product": {
                  "name": "389-ds-base-0:1.3.5.10-11.el7.src",
                  "product_id": "389-ds-base-0:1.3.5.10-11.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.3.5.10-11.el7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
                "product": {
                  "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
                  "product_id": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-devel@1.3.5.10-11.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
                "product": {
                  "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
                  "product_id": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-debuginfo@1.3.5.10-11.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
                "product": {
                  "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
                  "product_id": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-snmp@1.3.5.10-11.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
                "product": {
                  "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
                  "product_id": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-libs@1.3.5.10-11.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
                "product": {
                  "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
                  "product_id": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.3.5.10-11.el7?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
                "product": {
                  "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
                  "product_id": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-snmp@1.3.5.10-11.el7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
                "product": {
                  "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
                  "product_id": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-devel@1.3.5.10-11.el7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
                "product": {
                  "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
                  "product_id": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-debuginfo@1.3.5.10-11.el7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
                "product": {
                  "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
                  "product_id": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.3.5.10-11.el7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
                "product": {
                  "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
                  "product_id": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-libs@1.3.5.10-11.el7?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.src",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
          "product_id": "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Client-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.src",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
          "product_id": "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7ComputeNode-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.src",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-0:1.3.5.10-11.el7.src"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.src",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
          "product_id": "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.src",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
          "product_id": "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.src",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
        "relates_to_product_reference": "7Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        },
        "product_reference": "389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
        "relates_to_product_reference": "7Workstation"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Martin Basti",
            "Petr Spacek"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2016-4992",
      "cwe": {
        "id": "CWE-209",
        "name": "Generation of Error Message Containing Sensitive Information"
      },
      "discovery_date": "2016-06-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1347760"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An information disclosure flaw was found in 389 Directory Server. A user with no access to objects in certain LDAP sub-tree could send LDAP ADD operations with a specific object name. The error message returned to the user was different based on whether the target object existed or not.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "389-ds-base: Information disclosure via repeated use of LDAP ADD operation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "RHBZ#1347760",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-4992",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4992",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1",
          "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
        }
      ],
      "release_date": "2016-06-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-11-03T08:11:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the 389 server service will be restarted automatically.",
          "product_ids": [
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:2594"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "389-ds-base: Information disclosure via repeated use of LDAP ADD operation"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "William Brown"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2016-5405",
      "cwe": {
        "id": "CWE-385",
        "name": "Covert Timing Channel"
      },
      "discovery_date": "2016-07-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1358865"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that 389 Directory Server was vulnerable to a remote password disclosure via timing attack. A remote attacker could possibly use this flaw to retrieve directory server password after many tries.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "389-ds-base: Password verification vulnerable to timing attack",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-5405"
        },
        {
          "category": "external",
          "summary": "RHBZ#1358865",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358865"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-5405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-5405"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5405",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5405"
        }
      ],
      "release_date": "2016-10-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-11-03T08:11:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the 389 server service will be restarted automatically.",
          "product_ids": [
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:2594"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "389-ds-base: Password verification vulnerable to timing attack"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Viktor Ashirov"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2016-5416",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2016-06-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1349540"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI (Access Control Instructions) could be read by an anonymous user. This could lead to leakage of sensitive information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "389-ds-base: ACI readable by anonymous user",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
          "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
          "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-5416"
        },
        {
          "category": "external",
          "summary": "RHBZ#1349540",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349540"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-5416",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-5416"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5416",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5416"
        }
      ],
      "release_date": "2016-05-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-11-03T08:11:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the 389 server service will be restarted automatically.",
          "product_ids": [
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:2594"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Client-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Client-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7ComputeNode-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7ComputeNode-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Server:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Server:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation-optional:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation-optional:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.src",
            "7Workstation:389-ds-base-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-debuginfo-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-devel-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-libs-0:1.3.5.10-11.el7.x86_64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.aarch64",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.ppc64le",
            "7Workstation:389-ds-base-snmp-0:1.3.5.10-11.el7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "389-ds-base: ACI readable by anonymous user"
    }
  ]
}

rhsa-2016:2765

Vulnerability from csaf_redhat

Published

2016-11-15 19:36

Modified

2024-11-22 10:05

Summary

Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update

Notes

Topic

An update for 389-ds-base is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI (Access Control Instructions) could be read by an anonymous user. This could lead to leakage of sensitive information. (CVE-2016-5416) * An information disclosure flaw was found in 389 Directory Server. A user with no access to objects in certain LDAP sub-tree could send LDAP ADD operations with a specific object name. The error message returned to the user was different based on whether the target object existed or not. (CVE-2016-4992) * It was found that 389 Directory Server was vulnerable to a remote password disclosure via timing attack. A remote attacker could possibly use this flaw to retrieve directory server password after many tries. (CVE-2016-5405) The CVE-2016-5416 issue was discovered by Viktor Ashirov (Red Hat); the CVE-2016-4992 issue was discovered by Petr Spacek (Red Hat) and Martin Basti (Red Hat); and the CVE-2016-5405 issue was discovered by William Brown (Red Hat). Bug Fix(es): * Previously, a bug in the changelog iterator buffer caused it to point to an incorrect position when reloading the buffer. This caused replication to skip parts of the changelog, and consequently some changes were not replicated. This bug has been fixed, and replication data loss due to an incorrectly reloaded changelog buffer no longer occurs. (BZ#1354331) * Previously, if internal modifications were generated on a consumer (for example by the Account Policy plug-in) and additional changes to the same attributes were received from replication, a bug caused Directory Server to accumulate state information on the consumer. The bug has been fixed by making sure that replace operations are only applied if they are newer than existing attribute deletion change sequence numbers (CSNs), and state information no longer accumulates in this situation. (BZ#1379599) Enhancement(s): * In a multi-master replication environment where multiple masters receive updates at the same time, it was previously possible for a single master to obtain exclusive access to a replica and hold it for a very long time due to problems such as a slow network connection. During this time, other masters were blocked from accessing the same replica, which considerably slowed down the replication process. This update adds a new configuration attribute, "nsds5ReplicaReleaseTimeout", which can be used to specify a timeout in seconds. After the specified timeout period passes, the master releases the replica, allowing other masters to access it and send their updates. (BZ#1358390)

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for 389-ds-base is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.\n\nSecurity Fix(es):\n\n* It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI (Access Control Instructions) could be read by an anonymous user. This could lead to leakage of sensitive information. (CVE-2016-5416)\n\n* An information disclosure flaw was found in 389 Directory Server. A user with no access to objects in certain LDAP sub-tree could send LDAP ADD operations with a specific object name. The error message returned to the user was different based on whether the target object existed or not. (CVE-2016-4992)\n\n* It was found that 389 Directory Server was vulnerable to a remote password disclosure via timing attack. A remote attacker could possibly use this flaw to retrieve directory server password after many tries. (CVE-2016-5405)\n\nThe CVE-2016-5416 issue was discovered by Viktor Ashirov (Red Hat); the CVE-2016-4992 issue was discovered by Petr Spacek (Red Hat) and Martin Basti (Red Hat); and the CVE-2016-5405 issue was discovered by William Brown (Red Hat).\n\nBug Fix(es):\n\n* Previously, a bug in the changelog iterator buffer caused it to point to an incorrect position when reloading the buffer. This caused replication to skip parts of the changelog, and consequently some changes were not replicated. This bug has been fixed, and replication data loss due to an incorrectly reloaded changelog buffer no longer occurs. (BZ#1354331)\n\n* Previously, if internal modifications were generated on a consumer (for example by the Account Policy plug-in) and additional changes to the same attributes were received from replication, a bug caused Directory Server to accumulate state information on the consumer. The bug has been fixed by making sure that replace operations are only applied if they are newer than existing attribute deletion change sequence numbers (CSNs), and state information no longer accumulates in this situation. (BZ#1379599)\n\nEnhancement(s):\n\n* In a multi-master replication environment where multiple masters receive updates at the same time, it was previously possible for a single master to obtain exclusive access to a replica and hold it for a very long time due to problems such as a slow network connection. During this time, other masters were blocked from accessing the same replica, which considerably slowed down the replication process. This update adds a new configuration attribute, \"nsds5ReplicaReleaseTimeout\", which can be used to specify a timeout in seconds. After the specified timeout period passes, the master releases the replica, allowing other masters to access it and send their updates. (BZ#1358390)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2016:2765",
        "url": "https://access.redhat.com/errata/RHSA-2016:2765"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1347760",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
      },
      {
        "category": "external",
        "summary": "1349540",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349540"
      },
      {
        "category": "external",
        "summary": "1354331",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1354331"
      },
      {
        "category": "external",
        "summary": "1358865",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358865"
      },
      {
        "category": "external",
        "summary": "1376676",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376676"
      },
      {
        "category": "external",
        "summary": "1381153",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1381153"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2765.json"
      }
    ],
    "title": "Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-22T10:05:11+00:00",
      "generator": {
        "date": "2024-11-22T10:05:11+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2016:2765",
      "initial_release_date": "2016-11-15T19:36:28+00:00",
      "revision_history": [
        {
          "date": "2016-11-15T19:36:28+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2016-11-15T19:36:28+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T10:05:11+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
                  "product_id": "6Client-optional-6.8.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
                  "product_id": "6ComputeNode-optional-6.8.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 6)",
                  "product_id": "6Server-6.8.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 6)",
                  "product_id": "6Server-optional-6.8.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 6)",
                  "product_id": "6Workstation-6.8.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
                  "product_id": "6Workstation-optional-6.8.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
                "product": {
                  "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
                  "product_id": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-devel@1.2.11.15-84.el6_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
                "product": {
                  "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
                  "product_id": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-debuginfo@1.2.11.15-84.el6_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
                "product": {
                  "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
                  "product_id": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-libs@1.2.11.15-84.el6_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
                "product": {
                  "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
                  "product_id": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.2.11.15-84.el6_8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
                "product": {
                  "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
                  "product_id": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-devel@1.2.11.15-84.el6_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
                "product": {
                  "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
                  "product_id": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-debuginfo@1.2.11.15-84.el6_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
                "product": {
                  "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
                  "product_id": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base-libs@1.2.11.15-84.el6_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
                "product": {
                  "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
                  "product_id": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.2.11.15-84.el6_8?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-base-0:1.2.11.15-84.el6_8.src",
                "product": {
                  "name": "389-ds-base-0:1.2.11.15-84.el6_8.src",
                  "product_id": "389-ds-base-0:1.2.11.15-84.el6_8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/389-ds-base@1.2.11.15-84.el6_8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.src",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
          "product_id": "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Client-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.src",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
          "product_id": "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6ComputeNode-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.src as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.src",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
          "product_id": "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.src",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Server-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.src",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.src",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
          "product_id": "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        },
        "product_reference": "389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
        "relates_to_product_reference": "6Workstation-optional-6.8.z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Martin Basti",
            "Petr Spacek"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2016-4992",
      "cwe": {
        "id": "CWE-209",
        "name": "Generation of Error Message Containing Sensitive Information"
      },
      "discovery_date": "2016-06-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1347760"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An information disclosure flaw was found in 389 Directory Server. A user with no access to objects in certain LDAP sub-tree could send LDAP ADD operations with a specific object name. The error message returned to the user was different based on whether the target object existed or not.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "389-ds-base: Information disclosure via repeated use of LDAP ADD operation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "RHBZ#1347760",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-4992",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4992",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1",
          "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
        }
      ],
      "release_date": "2016-06-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-11-15T19:36:28+00:00",
          "details": "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the 389 server service will be restarted\nautomatically.",
          "product_ids": [
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:2765"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "389-ds-base: Information disclosure via repeated use of LDAP ADD operation"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "William Brown"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2016-5405",
      "cwe": {
        "id": "CWE-385",
        "name": "Covert Timing Channel"
      },
      "discovery_date": "2016-07-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1358865"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that 389 Directory Server was vulnerable to a remote password disclosure via timing attack. A remote attacker could possibly use this flaw to retrieve directory server password after many tries.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "389-ds-base: Password verification vulnerable to timing attack",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-5405"
        },
        {
          "category": "external",
          "summary": "RHBZ#1358865",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358865"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-5405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-5405"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5405",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5405"
        }
      ],
      "release_date": "2016-10-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-11-15T19:36:28+00:00",
          "details": "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the 389 server service will be restarted\nautomatically.",
          "product_ids": [
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:2765"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "389-ds-base: Password verification vulnerable to timing attack"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Viktor Ashirov"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2016-5416",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2016-06-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1349540"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI (Access Control Instructions) could be read by an anonymous user. This could lead to leakage of sensitive information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "389-ds-base: ACI readable by anonymous user",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
          "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
          "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
          "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-5416"
        },
        {
          "category": "external",
          "summary": "RHBZ#1349540",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349540"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-5416",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-5416"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5416",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5416"
        }
      ],
      "release_date": "2016-05-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-11-15T19:36:28+00:00",
          "details": "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the 389 server service will be restarted\nautomatically.",
          "product_ids": [
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:2765"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Client-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Client-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6ComputeNode-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6ComputeNode-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Server-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Server-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.src",
            "6Workstation-optional-6.8.z:389-ds-base-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-debuginfo-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-devel-0:1.2.11.15-84.el6_8.x86_64",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.i686",
            "6Workstation-optional-6.8.z:389-ds-base-libs-0:1.2.11.15-84.el6_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "389-ds-base: ACI readable by anonymous user"
    }
  ]
}

gsd-2016-4992

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2016-4992

Aliases

CVE-2016-4992

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-4992",
    "description": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects.",
    "id": "GSD-2016-4992",
    "references": [
      "https://www.suse.com/security/cve/CVE-2016-4992.html",
      "https://access.redhat.com/errata/RHSA-2016:2765",
      "https://access.redhat.com/errata/RHSA-2016:2594",
      "https://advisories.mageia.org/CVE-2016-4992.html",
      "https://alas.aws.amazon.com/cve/html/CVE-2016-4992.html",
      "https://linux.oracle.com/cve/CVE-2016-4992.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-4992"
      ],
      "details": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects.",
      "id": "GSD-2016-4992",
      "modified": "2023-12-13T01:21:18.248488Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2016-4992",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760",
            "refsource": "MISC",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
          },
          {
            "name": "http://rhn.redhat.com/errata/RHSA-2016-2594.html",
            "refsource": "MISC",
            "url": "http://rhn.redhat.com/errata/RHSA-2016-2594.html"
          },
          {
            "name": "http://rhn.redhat.com/errata/RHSA-2016-2765.html",
            "refsource": "MISC",
            "url": "http://rhn.redhat.com/errata/RHSA-2016-2765.html"
          },
          {
            "name": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1",
            "refsource": "MISC",
            "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2016-4992"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Vendor Advisory"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347760"
            },
            {
              "name": "RHSA-2016:2765",
              "refsource": "REDHAT",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2016-2765.html"
            },
            {
              "name": "RHSA-2016:2594",
              "refsource": "REDHAT",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2016-2594.html"
            },
            {
              "name": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1",
              "refsource": "MISC",
              "tags": [],
              "url": "https://github.com/389ds/389-ds-base/commit/0b932d4b926d46ac5060f02617330dc444e06da1"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2023-09-18T16:15Z",
      "publishedDate": "2017-06-08T19:29Z"
    }
  }
}

opensuse-su-2024:10593-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

389-ds-2.0.10~git0.21dd2802c-1.1 on GA media

Notes

Title of the patch

389-ds-2.0.10~git0.21dd2802c-1.1 on GA media

Description of the patch

These are all security issues fixed in the 389-ds-2.0.10~git0.21dd2802c-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-10593

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "389-ds-2.0.10~git0.21dd2802c-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the 389-ds-2.0.10~git0.21dd2802c-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10593",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10593-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-4992 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-4992/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15134 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15134/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1054 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1054/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10850 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10850/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10871 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10871/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1089 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1089/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10935 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10935/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14624 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14624/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14638 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14638/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-14648 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-14648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14824 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14824/"
      }
    ],
    "title": "389-ds-2.0.10~git0.21dd2802c-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10593-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
                "product": {
                  "name": "389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
                  "product_id": "389-ds-2.0.10~git0.21dd2802c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
                "product": {
                  "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
                  "product_id": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
                "product": {
                  "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
                  "product_id": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
                "product": {
                  "name": "lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
                  "product_id": "lib389-2.0.10~git0.21dd2802c-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
                "product": {
                  "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
                  "product_id": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
                "product": {
                  "name": "389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
                  "product_id": "389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
                "product": {
                  "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
                  "product_id": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
                "product": {
                  "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
                  "product_id": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
                "product": {
                  "name": "lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
                  "product_id": "lib389-2.0.10~git0.21dd2802c-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
                "product": {
                  "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
                  "product_id": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
                "product": {
                  "name": "389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
                  "product_id": "389-ds-2.0.10~git0.21dd2802c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
                "product": {
                  "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
                  "product_id": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
                "product": {
                  "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
                  "product_id": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.0.10~git0.21dd2802c-1.1.s390x",
                "product": {
                  "name": "lib389-2.0.10~git0.21dd2802c-1.1.s390x",
                  "product_id": "lib389-2.0.10~git0.21dd2802c-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
                "product": {
                  "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
                  "product_id": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
                "product": {
                  "name": "389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
                  "product_id": "389-ds-2.0.10~git0.21dd2802c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
                "product": {
                  "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
                  "product_id": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
                "product": {
                  "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
                  "product_id": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
                "product": {
                  "name": "lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
                  "product_id": "lib389-2.0.10~git0.21dd2802c-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64",
                "product": {
                  "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64",
                  "product_id": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.0.10~git0.21dd2802c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64"
        },
        "product_reference": "389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le"
        },
        "product_reference": "389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.0.10~git0.21dd2802c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x"
        },
        "product_reference": "389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.0.10~git0.21dd2802c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64"
        },
        "product_reference": "389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64"
        },
        "product_reference": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le"
        },
        "product_reference": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x"
        },
        "product_reference": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64"
        },
        "product_reference": "389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64"
        },
        "product_reference": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le"
        },
        "product_reference": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x"
        },
        "product_reference": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64"
        },
        "product_reference": "389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.0.10~git0.21dd2802c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64"
        },
        "product_reference": "lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.0.10~git0.21dd2802c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le"
        },
        "product_reference": "lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.0.10~git0.21dd2802c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x"
        },
        "product_reference": "lib389-2.0.10~git0.21dd2802c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.0.10~git0.21dd2802c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64"
        },
        "product_reference": "lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64"
        },
        "product_reference": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le"
        },
        "product_reference": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x"
        },
        "product_reference": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        },
        "product_reference": "libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-4992",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-4992"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to infer the existence of RDN component objects.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-4992",
          "url": "https://www.suse.com/security/cve/CVE-2016-4992"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 991201 for CVE-2016-4992",
          "url": "https://bugzilla.suse.com/991201"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 997256 for CVE-2016-4992",
          "url": "https://bugzilla.suse.com/997256"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2016-4992"
    },
    {
      "cve": "CVE-2017-15134",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15134"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x before 1.3.6.13, 1.3.7.x before 1.3.7.9, 1.4.x before 1.4.0.5 handled certain LDAP search filters. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15134",
          "url": "https://www.suse.com/security/cve/CVE-2017-15134"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1007004 for CVE-2017-15134",
          "url": "https://bugzilla.suse.com/1007004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076530 for CVE-2017-15134",
          "url": "https://bugzilla.suse.com/1076530"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2017-15134"
    },
    {
      "cve": "CVE-2018-1054",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1054"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filters, affecting all versions including 1.4.x. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1054",
          "url": "https://www.suse.com/security/cve/CVE-2018-1054"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1083689 for CVE-2018-1054",
          "url": "https://bugzilla.suse.com/1083689"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1054"
    },
    {
      "cve": "CVE-2018-10850",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10850"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds-base handles persistent search, resulting in a crash if the server is under load. An anonymous attacker could use this flaw to trigger a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10850",
          "url": "https://www.suse.com/security/cve/CVE-2018-10850"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1096368 for CVE-2018-10850",
          "url": "https://bugzilla.suse.com/1096368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10850"
    },
    {
      "cve": "CVE-2018-10871",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10871"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "389-ds-base before versions 1.3.8.5, 1.4.0.12 is vulnerable to a Cleartext Storage of Sensitive Information. By default, when the Replica and/or retroChangeLog plugins are enabled, 389-ds-base stores passwords in plaintext format in their respective changelog files. An attacker with sufficiently high privileges, such as root or Directory Manager, can query these files in order to retrieve plaintext passwords.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10871",
          "url": "https://www.suse.com/security/cve/CVE-2018-10871"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099465 for CVE-2018-10871",
          "url": "https://bugzilla.suse.com/1099465"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10871"
    },
    {
      "cve": "CVE-2018-1089",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1089"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "389-ds-base before versions 1.4.0.9, 1.3.8.1, 1.3.6.15 did not properly handle long search filters with characters needing escapes, possibly leading to buffer overflows. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1089",
          "url": "https://www.suse.com/security/cve/CVE-2018-1089"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092187 for CVE-2018-1089",
          "url": "https://bugzilla.suse.com/1092187"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1089"
    },
    {
      "cve": "CVE-2018-10935",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10935"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the 389 Directory Server that allows users to cause a crash in the LDAP server using ldapsearch with server side sort.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10935",
          "url": "https://www.suse.com/security/cve/CVE-2018-10935"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105606 for CVE-2018-10935",
          "url": "https://bugzilla.suse.com/1105606"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10935"
    },
    {
      "cve": "CVE-2018-14624",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14624"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in log__error_emergency(). An attacker could send a flood of modifications to a very large DN, which would cause slapd to crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14624",
          "url": "https://www.suse.com/security/cve/CVE-2018-14624"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106699 for CVE-2018-14624",
          "url": "https://bugzilla.suse.com/1106699"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-14624"
    },
    {
      "cve": "CVE-2018-14638",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14638"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in 389-ds-base before version 1.3.8.4-13. The process ns-slapd crashes in delete_passwdPolicy function when persistent search connections are terminated unexpectedly leading to remote denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14638",
          "url": "https://www.suse.com/security/cve/CVE-2018-14638"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1108674 for CVE-2018-14638",
          "url": "https://bugzilla.suse.com/1108674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-14638"
    },
    {
      "cve": "CVE-2018-14648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-14648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in 389 Directory Server. A specially crafted search query could lead to excessive CPU consumption in the do_search() function. An unauthenticated attacker could use this flaw to provoke a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-14648",
          "url": "https://www.suse.com/security/cve/CVE-2018-14648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1109609 for CVE-2018-14648",
          "url": "https://bugzilla.suse.com/1109609"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-14648"
    },
    {
      "cve": "CVE-2019-14824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the \u0027deref\u0027 plugin of 389-ds-base where it could use the \u0027search\u0027 permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes, such as password hashes.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
          "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14824",
          "url": "https://www.suse.com/security/cve/CVE-2019-14824"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-devel-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:389-ds-snmp-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:lib389-2.0.10~git0.21dd2802c-1.1.x86_64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.aarch64",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.ppc64le",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.s390x",
            "openSUSE Tumbleweed:libsvrcore0-2.0.10~git0.21dd2802c-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14824"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2016-4992 (GCVE-0-2016-4992)

Vulnerability from cvelistv5

ghsa-wm9r-q6g4-j33r

Vulnerability from github

fkie_cve-2016-4992

Vulnerability from fkie_nvd

rhsa-2016:2594

Vulnerability from csaf_redhat

rhsa-2016:2765

Vulnerability from csaf_redhat

gsd-2016-4992

Vulnerability from gsd

opensuse-su-2024:10593-1

Vulnerability from csaf_opensuse

Tags

Sightings

Nomenclature