Untriaged
An off-by-one error leading to a crash was discovered in …
An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
References
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC
- https://access.redhat.com/security/cve/cve-2014-8182 x_refsource_MISC
- https://security-tracker.debian.org/tracker/CVE-2014-8182 x_refsource_MISC
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC
- https://security-tracker.debian.org/tracker/CVE-2014-8182 x_refsource_MISC x_transferred
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC x_transferred
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC x_transferred
- https://access.redhat.com/security/cve/cve-2014-8182 x_refsource_MISC x_transferred
- https://security-tracker.debian.org/tracker/CVE-2014-8182 x_refsource_MISC
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC
- https://access.redhat.com/security/cve/cve-2014-8182 x_refsource_MISC
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC x_transferred
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-8182 x_refsource_MISC x_transferred
- https://access.redhat.com/security/cve/cve-2014-8182 x_refsource_MISC x_transferred
- https://security-tracker.debian.org/tracker/CVE-2014-8182 x_refsource_MISC x_transferred
Affected products
openldap
- ==2.4
Package maintainers
-
@dasJ Janne Heß <janne@hess.ooo>
-
@mweinelt Martin Weinelt <hexa@darmstadt.ccc.de>
-
@Conni2461 Simon Hauser <simon-hauser@outlook.com>
-
@helsinki-Jo Joachim Ernst <joachim.ernst@helsinki-systems.de>