Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-6908

Опубликовано: 11 сент. 2015
Источник: ubuntu
Приоритет: medium
EPSS Высокий
CVSS2: 5

Описание

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.

РелизСтатусПримечание
devel

released

2.4.41+dfsg-1ubuntu2
esm-infra-legacy/trusty

released

2.4.31-1+nmu2ubuntu8.2
precise

released

2.4.28-1.1ubuntu4.6
trusty

released

2.4.31-1+nmu2ubuntu8.2
trusty/esm

released

2.4.31-1+nmu2ubuntu8.2
upstream

released

2.4.42+dfsg-2
vivid

released

2.4.31-1+nmu2ubuntu12.3
vivid/stable-phone-overlay

released

2.4.31-1+nmu2ubuntu12.3
vivid/ubuntu-core

released

2.4.31-1+nmu2ubuntu12.3

Показывать по

Ссылки на источники

EPSS

Процентиль: 99%
0.73037
Высокий

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-6908

redhat
около 10 лет назад

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.

nvd логотип

CVE-2015-6908

nvd
около 10 лет назад

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.

debian логотип

CVE-2015-6908

debian
около 10 лет назад

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 ...

suse-cvrf логотип

SUSE-SU-2016:0090-1

suse-cvrf
почти 10 лет назад

Security update for openldap2

github логотип

GHSA-436x-9fhf-jq78

github
больше 3 лет назад

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.

EPSS

Процентиль: 99%
0.73037
Высокий

5 Medium

CVSS2