Vulnerabilities

CVE-2018-14624

by Fred · 06/09/2018

A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in log__error_emergency(). An attacker could send a flood of modifications to a very large DN, which would cause slapd to crash.

Date published : 2018-09-06

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14624

https://pagure.io/389-ds-base/issue/49937

Similar

Tags: Cybersecurity Alert