ALAS-2016-633 ---- libldbID: oval:org.secpod.oval:def:1600377 | Date: (C)2016-05-19 (M)2023-11-13 |
Class: PATCH | Family: unix |
A denial of service flaw was found in the ldb_wildcard_compare function of libldb. A remote attacker could send a specially crafted packet that, when processed by an application using libldb , would cause that application to consume an excessive amount of memory and crash.A memory-read flaw was found in the way the libldb library processed LDB DN records with a null byte. An authenticated, remote attacker could use this flaw to read heap-memory pages from the server.
Platform: |
Amazon Linux AMI |