Nixpkgs Security Tracker

Untriaged

Permalink CVE-2024-2199

created 4 months, 3 weeks ago

389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c

A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.

Affected products

389-ds:1.4

389-ds-base

<3.1.1
*

redhat-ds:11

redhat-ds:12

389-ds:1.4/389-ds-base

redhat-ds:11/389-ds-base

redhat-ds:12/389-ds-base

Matching in nixpkgs

pkgs._389-ds-base

Enterprise-class Open Source LDAP server for Linux

nixos-unstable -
- nixpkgs-unstable 3.1.3

Package maintainers

@ners ners <ners@gmx.ch>

Suggestion detail

Affected products

Matching in nixpkgs

pkgs._389-ds-base

Package maintainers