Описание
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.4.41+dfsg-1ubuntu2 |
| esm-infra-legacy/trusty | released | 2.4.31-1+nmu2ubuntu8.2 |
| precise | released | 2.4.28-1.1ubuntu4.6 |
| trusty | released | 2.4.31-1+nmu2ubuntu8.2 |
| trusty/esm | released | 2.4.31-1+nmu2ubuntu8.2 |
| upstream | released | 2.4.42+dfsg-2 |
| vivid | released | 2.4.31-1+nmu2ubuntu12.3 |
| vivid/stable-phone-overlay | released | 2.4.31-1+nmu2ubuntu12.3 |
| vivid/ubuntu-core | released | 2.4.31-1+nmu2ubuntu12.3 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 ...
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
EPSS
5 Medium
CVSS2