Amazon Linux AMI Security Advisory: ALAS-2013-255
Advisory Release Date: 2014-09-16 22:05 Pacific
It was discovered that the 389 Directory Server did not properly handle certain Get Effective Rights (GER) search queries when the attribute list, which is a part of the query, included several names using the '@' character. An attacker able to submit search queries to the 389 Directory Server could cause it to crash.
Run yum update 389-ds-base to update your system.