CVE-2021-3514

Опубликовано: 28 мая 2021

Источник: debian

Описание

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
389-ds-base	fixed	1.4.4.11-2		package
389-ds-base	no-dsa		stretch	package

Примечания

https://github.com/389ds/389-ds-base/issues/4711

Связанные уязвимости

CVE-2021-3514

CVSS3: 6.5

ubuntu

почти 5 лет назад

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

CVE-2021-3514

CVSS3: 6.5

redhat

около 5 лет назад

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

CVE-2021-3514

CVSS3: 6.5

nvd

почти 5 лет назад

When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.

openSUSE-SU-2021:0868-1

suse-cvrf

почти 5 лет назад

Security update for 389-ds

SUSE-SU-2021:1878-1

suse-cvrf

почти 5 лет назад

Security update for 389-ds