Package slapi-nis updated to version 0.56.7-alt1 for branch sisyphus in task 272071.

Published: 2021-03-30

BDU:2023-01691

Уязвимость пакета Slapi-nis для 389 Directory Server, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2021-3480

Published: 2021-05-20
Modified: 2024-11-21

CVE-2021-3480

A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer dereference during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The highest threat from this vulnerability is to system availability.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

https://bugzilla.redhat.com/show_bug.cgi?id=1944640
https://bugzilla.redhat.com/show_bug.cgi?id=1944640
FEDORA-2021-a4ee3426c4
FEDORA-2021-a4ee3426c4
FEDORA-2021-f93243d461
FEDORA-2021-f93243d461

Version: 2.1.0

Package slapi-nis update in sisyphus on 2021-05-18

ALT-PU-2021-1827-1

Closed vulnerabilities

BDU:2023-01691

CVE-2021-3480