Описание
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | Red Hat specific |
| esm-infra-legacy/trusty | not-affected | Red Hat specific |
| esm-infra/xenial | not-affected | Red Hat specific |
| precise | not-affected | Red Hat specific |
| trusty | not-affected | Red Hat specific |
| trusty/esm | not-affected | Red Hat specific |
| upstream | not-affected | Red Hat specific |
| vivid/stable-phone-overlay | not-affected | Red Hat specific |
| vivid/ubuntu-core | not-affected | Red Hat specific |
| xenial | not-affected | Red Hat specific |
Показывать по
EPSS
4.3 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
An off-by-one error leading to a crash was discovered in openldap 2.4 ...
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
EPSS
4.3 Medium
CVSS2
7.5 High
CVSS3