2045 moderate openSUSE Leap 42.2 Update ports This update for 389-ds fixes the following issues: - CVE-2017-7551: 389-ds-base: Password brute-force possible for locked account due to different return codes (bsc#1051997) - CVE-2016-4992: 389-ds: Information disclosure via repeated use of LDAP ADD operation (bsc#997256) - CVE-2016-5405: 389-ds: Password verification vulnerable to timing attack (bsc#1007004) - CVE-2017-2591: 389-ds-base: Heap buffer overflow in uiduniq.c (bsc#1020670) - CVE-2017-2668 389-ds Remote crash via crafted LDAP messages (bsc#1069067) - CVE-2016-0741: 389-ds: worker threads do not detect abnormally closed connections causing DoS (bsc#1069074) 389-ds-1.3.4.5-5.5.1.ppc64le.rpm 389-ds-1.3.4.5-5.5.1.src.rpm 389-ds-debuginfo-1.3.4.5-5.5.1.ppc64le.rpm 389-ds-debugsource-1.3.4.5-5.5.1.ppc64le.rpm 389-ds-devel-1.3.4.5-5.5.1.ppc64le.rpm 389-ds-1.3.4.5-5.5.1.aarch64.rpm 389-ds-debuginfo-1.3.4.5-5.5.1.aarch64.rpm 389-ds-debugsource-1.3.4.5-5.5.1.aarch64.rpm 389-ds-devel-1.3.4.5-5.5.1.aarch64.rpm 389-ds-1.3.4.5-5.5.1.armv7hl.rpm 389-ds-debuginfo-1.3.4.5-5.5.1.armv7hl.rpm 389-ds-debugsource-1.3.4.5-5.5.1.armv7hl.rpm 389-ds-devel-1.3.4.5-5.5.1.armv7hl.rpm