ELSA-2015-0895

Опубликовано: 28 апр. 2015

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2015-0895: 389-ds-base security update (IMPORTANT)

[1.3.3.1-16]

release 1.3.3.1-16
Resolves: bug 1212894 - CVE-2015-1854 389ds-base: access control bypass with modrdn

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

389-ds-base

1.3.3.1-16.el7_1

389-ds-base-devel

1.3.3.1-16.el7_1

389-ds-base-libs

1.3.3.1-16.el7_1

Связанные CVE

CVE-2015-1854

Ссылки на источники

Связанные уязвимости

CVE-2015-1854

CVSS3: 7.5

ubuntu

почти 8 лет назад

389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call.

CVE-2015-1854

redhat

больше 10 лет назад

389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call.

CVE-2015-1854

CVSS3: 7.5

nvd

почти 8 лет назад

389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call.

CVE-2015-1854

CVSS3: 7.5

debian

почти 8 лет назад

389 Directory Server before 1.3.3.10 allows attackers to bypass intend ...

GHSA-v685-gqm8-hvj7

CVSS3: 7.5

github

больше 3 лет назад

389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call.