HCE1-SA-2022-0001 Important HCE 1.1 Security Fix(es): A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication is required. The message triggers a segmentation fault that results in slapd crashing. (CVE-2022-0918) A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication. (CVE-2022-0996) HCE 1.1 389-ds-base-1.3.10.2-16.hce1c.x86_64.rpm 389-ds-base-libs-1.3.10.2-16.hce1c.x86_64.rpm