PatchSiren cyber security CVE debrief
CVE-2026-11611 Red Hat CVE debrief
CVE-2026-11611 is a medium-severity vulnerability in 389 Directory Server. The Content Synchronization persistent search plugin allows unbounded memory growth when an authenticated client stops reading sync responses, enabling denial of service. Additional race conditions in plugin thread lifecycle can cause crashes during connection teardown or shutdown.
- Vendor
- Red Hat
- Product
- Red Hat Directory Server 11
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-08
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-08
- Advisory updated
- 2026-06-15
Who should care
Users of 389 Directory Server should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The Content Synchronization persistent search plugin in 389 Directory Server allows unbounded memory growth when an authenticated client stops reading sync responses, enabling denial of service. Additional race conditions in plugin thread lifecycle can cause crashes during connection teardown or shutdown.
Defensive priority
medium
Recommended defensive actions
- Apply patches or updates from the vendor as they become available.
- Restrict access to the 389 Directory Server to only trusted clients and users.
- Monitor server resources and logs for signs of memory growth or crashes.
Evidence notes
Vendor: Unknown Vendor (confidence: low). Evidence suggests the vendor may be Redhat.
Official resources
-
CVE-2026-11611 CVE record
CVE.org
-
CVE-2026-11611 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
-
Mitigation or vendor reference
[email protected] - Issue Tracking, Vendor Advisory
-
Source reference
[email protected] - Permissions Required
CVE-2026-11611 was published on 2026-06-08T17:16:40.930Z and modified on 2026-06-09T02:08:28.150Z.