{"affected":[{"ecosystem_specific":{"binaries":[{"389-ds":"1.4.4.19~git28.b12c72226-150300.3.12.1","389-ds-devel":"1.4.4.19~git28.b12c72226-150300.3.12.1","lib389":"1.4.4.19~git28.b12c72226-150300.3.12.1","libsvrcore0":"1.4.4.19~git28.b12c72226-150300.3.12.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Server Applications 15 SP3","name":"389-ds","purl":"pkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.4.4.19~git28.b12c72226-150300.3.12.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for 389-ds fixes the following issues:\n\n- CVE-2022-0918: Fixed a potential denial of service via crafted packet (bsc#1197275).\n- CVE-2022-0996: Fixed a mishandling of password expiry (bsc#1197345).\n- Resolved LDAP-Support not working with DHCP by adding required schema (bsc#1194068)\n- Resolved multiple index migration bug (bsc#1194084)\n","id":"SUSE-SU-2022:1100-1","modified":"2022-04-04T11:00:18Z","published":"2022-04-04T11:00:18Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20221100-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194068"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194084"},{"type":"REPORT","url":"https://bugzilla.suse.com/1197275"},{"type":"REPORT","url":"https://bugzilla.suse.com/1197345"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0918"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0996"}],"related":["CVE-2022-0918","CVE-2022-0996"],"summary":"Security update for 389-ds","upstream":["CVE-2022-0918","CVE-2022-0996"]}