Описание
ELSA-2017-0893: 389-ds-base security and bug fix update (IMPORTANT)
[1.2.1.11.15-91]
- Release 1.2.11.15-91
- Resolves: bug 1437777 - EMBARGOED CVE-2017-2668 389-ds-base: Remote crash via crafted LDAP messages
[1.2.11.15-90]
- Release 1.2.11.15-90
- Resovles: #1435365 - Unable to dereference unqiemember attribute because it is dn [#UID] not dn syntax
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
389-ds-base
1.2.11.15-91.el6_9
389-ds-base-devel
1.2.11.15-91.el6_9
389-ds-base-libs
1.2.11.15-91.el6_9
Oracle Linux i686
389-ds-base
1.2.11.15-91.el6_9
389-ds-base-devel
1.2.11.15-91.el6_9
389-ds-base-libs
1.2.11.15-91.el6_9
Связанные CVE
Связанные уязвимости
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an ...
389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.