Description389-ds-base before versions 188.8.131.52 and 184.108.40.206 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having critical severity.SUSE Bugzilla entry: 1069067 [RESOLVED / FIXED] SUSE Security Advisories:
- openSUSE-SU-2017:3362-1, published Tue, 19 Dec 2017 03:07:12 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Leap 42.2|| ||Patchnames:
|openSUSE Leap 42.3|| ||Patchnames: