[Forgot Password]
Login  Register Subscribe

24437

 
 

131815

 
 

116370

 
 

909

 
 

90976

 
 

142

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2018-14624Date: (C)2018-09-07   (M)2018-10-25


A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in log__error_emergency(). An attacker could send a flood of modifications to a very large DN, which would cause slapd to crash.

Reference:
RHSA-2018:2757
https://lists.debian.org/debian-lts-announce/2018/09/msg00037.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14624
https://pagure.io/389-ds-base/issue/49937

OVAL    5
oval:org.secpod.oval:def:1502319
oval:org.secpod.oval:def:1600939
oval:org.secpod.oval:def:1700085
oval:org.secpod.oval:def:204879
...

© SecPod Technologies