SUSE-RU-2025:3692-1: important: Recommended update for 389-ds

SLE-UPDATES null at suse.de
Tue Oct 21 08:32:20 UTC 2025 


# Recommended update for 389-ds

Announcement ID: SUSE-RU-2025:3692-1  
Release Date: 2025-10-21T05:47:05Z  
Rating: important  
References:

  * bsc#1249033

  
Affected Products:

  * Server Applications Module 15-SP7
  * SUSE Linux Enterprise Real Time 15 SP7
  * SUSE Linux Enterprise Server 15 SP7
  * SUSE Linux Enterprise Server for SAP Applications 15 SP7

  
  
An update that has one fix can now be installed.

## Description:

This update for 389-ds fixes the following issues:

  * prevent segfault on extremely large queries (bsc#1249033).
  * do not delete referrals on chain_on_update backend
  * prevent stack depth being hit
  * The parentId attribute is indexed with improper matching rule
  * When deferred memberof update is enabled after the server crashed it should
    not launch memberof fixup task by default
  * memberOf - ignored deferred updates with LMDB
  * Compilation failure with rust-1.89 on Fedora ELN
  * UI - Replace deprecated Select components with new TypeaheadSelect
  * UI - Fix typeahead Select fields losing values on Enter keypress
  * UI - Show error message when trying to use unavailable ports
  * More UI fixes
  * Revise time skew check in healthcheck tool and add option to exclude checks
  * UI - update Radio handlers and LDAP entries last modified time
  * dsconf monitor server fails with ldapi:// due to absent server ID
  * Make user/subtree policy creation idempotent
  * AddressSanitizer: leak in agmt_update_init_status
  * AddressSanitizer: leak in do_search
  * AddressSanitizer: memory leak in mdb_init
  * Memory leak in roles_cache_create_object_from_entry part 2
  * Memory leak in roles_cache_create_object_from_entry
  * RFE - Allow system to manage uid/gid at startup
  * Adjust xfail marks
  * ns-slapd crashes when a referral is added
  * CLI - Fix default error log level
  * Fix disk monitoring test failures and improve test maintainability
  * Mask password hashes in audit logs
  * Add test for numSubordinates replication consistency with tombstones
  * Add test for entryUSN overflow on failed add operations
  * Crash if repl keep alive entry can not be created
  * Log user that is updated during password modify extended operation
  * dsconf - Replicas with the "consumer" role allow for viewing and
    modification of their changelog.
  * instance read-only mode is broken
  * Prevent repeated disconnect logs during shutdown
  * compressed log rotation creates files with world readable permission
  * str2filter is not fully applying matching rules
  * UI - schema attribute table expansion break after moving to a new page
  * CLI, UI - Properly handle disabled NDN cache
  * uiduniq: allow specifying match rules in the filter

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * Server Applications Module 15-SP7  
    zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-3692=1

## Package List:

  * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64)
    * 389-ds-devel-2.5.3~git144.95b15d57c-150700.3.6.1
    * 389-ds-debuginfo-2.5.3~git144.95b15d57c-150700.3.6.1
    * libsvrcore0-2.5.3~git144.95b15d57c-150700.3.6.1
    * 389-ds-2.5.3~git144.95b15d57c-150700.3.6.1
    * 389-ds-debugsource-2.5.3~git144.95b15d57c-150700.3.6.1
    * lib389-2.5.3~git144.95b15d57c-150700.3.6.1
    * libsvrcore0-debuginfo-2.5.3~git144.95b15d57c-150700.3.6.1

## References:

  * https://bugzilla.suse.com/show_bug.cgi?id=1249033

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20251021/17a892f1/attachment.htm>

More information about the sle-updates mailing list