Asymmetric denial of service In 389-ds-base
Description
A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying userPassword using malformed input.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 debian 12 | 2.3.1+dfsg1-1+deb12u1 | ||
debian 13 | 3.1.1+dfsg1-1 | ||
debian 11 | 1.4.4.11-2+deb11u1 | ||
 rpm rhel6 | - | - | |
rpm rhel7 | 0:1.3.11.1-5.el7_9 | ||
rpm rhel9 | 0:2.4.5-8.el9_4 | ||
rpm rhel9.2 | 0:2.2.4-9.el9_2 |
Aliases
1. 2. 3. 4. 5.