Описание
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (crash) via a connection request without a username/dn, related to the 389 directory server.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.3.2.11-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [1.3.2.11-0ubuntu1]] |
| hardy | DNE | |
| lucid | DNE | |
| oneiric | DNE | |
| precise | not-affected | 1.2.10.4-0ubuntu3.1 |
| quantal | not-affected | 1.2.11.15-1 |
| raring | ignored | end of life |
| saucy | ignored | end of life |
| trusty | not-affected | 1.3.2.11-0ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.3.4-0ubuntu3 |
| esm-infra-legacy/trusty | not-affected | 3.3.4-0ubuntu3 |
| hardy | DNE | |
| lucid | DNE | |
| oneiric | DNE | |
| precise | not-affected | 2.1.4-0ubuntu1 |
| quantal | not-affected | 2.1.4-0ubuntu1 |
| raring | ignored | end of life |
| saucy | ignored | end of life |
| trusty | not-affected | 3.3.4-0ubuntu3 |
Показывать по
Ссылки на источники
5 Medium
CVSS2
Связанные уязвимости
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (crash) via a connection request without a username/dn, related to the 389 directory server.
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (crash) via a connection request without a username/dn, related to the 389 directory server.
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ ...
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (crash) via a connection request without a username/dn, related to the 389 directory server.
5 Medium
CVSS2