Описание
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
An off-by-one error leading to a crash was discovered in openldap's processing of DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | openldap | Will not fix | ||
| Red Hat Enterprise Linux 6 | openldap | Fixed | RHBA-2015:1292 | 22.07.2015 |
| Red Hat Enterprise Linux 7 | openldap | Fixed | RHSA-2015:2131 | 19.11.2015 |
Показывать по
Дополнительная информация
Статус:
EPSS
3.7 Low
CVSS3
2.6 Low
CVSS2
Связанные уязвимости
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
An off-by-one error leading to a crash was discovered in openldap 2.4 ...
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
EPSS
3.7 Low
CVSS3
2.6 Low
CVSS2