Untriaged
Permalink
CVE-2024-5953
5.7 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): ADJACENT_NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): NONE
- Availability impact (A): HIGH
389-ds-base: malformed userpassword hash may cause denial of service
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
References
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- RHSA-2025:1632 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- RHSA-2025:1632 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- RHSA-2025:1632 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- RHSA-2025:1632 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- RHSA-2025:1632 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html
- RHSA-2024:6569 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6576 x_refsource_REDHAT vendor-advisory
- RHSA-2024:7458 x_refsource_REDHAT vendor-advisory
- RHSA-2025:1632 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry
- RHBZ#2292104 issue-tracking x_refsource_REDHAT
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory
- RHSA-2024:4997 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5192 x_refsource_REDHAT vendor-advisory
- RHSA-2024:5690 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6153 x_refsource_REDHAT vendor-advisory
- RHSA-2024:6568 x_refsource_REDHAT vendor-advisory
- RHBZ#2292104 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html
- RHSA-2024:4633 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2024-5953 x_refsource_REDHAT vdb-entry x_transferred
Affected products
389-ds:1.4
- *
389-ds-base
- *
redhat-ds:11
- *
redhat-ds:12
- *
389-ds:1.4/389-ds-base
redhat-ds:11/389-ds-base
redhat-ds:12/389-ds-base
Matching in nixpkgs
pkgs._389-ds-base
Enterprise-class Open Source LDAP server for Linux
-
nixos-unstable -
- nixpkgs-unstable 3.1.3
Package maintainers
-
@ners ners <ners@gmx.ch>