Описание
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
A vulnerability was found in OpenLDAP, in ber_memalloc_x() function, leading to a null pointer dereference. This flaw can result in reduced system memory and cause LDAP authentication failures. The impact is primarily a disruption in authentication processes, which may hinder user access or service operations relying on LDAP for authentication.
Отчет
This vulnerability is rated as a low severity because, it affects only systems where memory exhaustion might occur due to mishandling of users crafted inputs, and it requires an authenticated user to trigger the issue. This vulnerability does not affect any versions of RHEL above 9.2.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | compat-openldap | Out of support scope | ||
| Red Hat Enterprise Linux 6 | openldap | Out of support scope | ||
| Red Hat Enterprise Linux 7 | compat-openldap | Out of support scope | ||
| Red Hat Enterprise Linux 7 | openldap | Out of support scope | ||
| Red Hat Enterprise Linux 9 | openldap | Affected | ||
| Red Hat Enterprise Linux 8 | openldap | Fixed | RHSA-2024:4264 | 02.07.2024 |
| Red Hat Enterprise Linux 8.8 Extended Update Support | openldap | Fixed | RHSA-2024:6033 | 29.08.2024 |
| Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | openldap | Fixed | RHSA-2025:8176 | 27.05.2025 |
| Red Hat Enterprise Linux 9.2 Extended Update Support | openldap | Fixed | RHSA-2025:8181 | 27.05.2025 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.1 High
CVSS3
Связанные уязвимости
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
A vulnerability was found in openldap. This security flaw causes a nul ...
EPSS
7.1 High
CVSS3