Nixpkgs Security Tracker

Untriaged

Permalink CVE-2024-6237

created 4 months, 3 weeks ago

389-ds-base: unauthenticated user can trigger a dos by sending a specific extended search request

A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of service.

Affected products

389-ds-base

<2.4.5
*

redhat-ds:12

389-ds:1.4/389-ds-base

redhat-ds:11/389-ds-base

redhat-ds:12/389-ds-base

Matching in nixpkgs

pkgs._389-ds-base

Enterprise-class Open Source LDAP server for Linux

nixos-unstable -
- nixpkgs-unstable 3.1.3

Package maintainers

@ners ners <ners@gmx.ch>

Suggestion detail

Affected products

Matching in nixpkgs

pkgs._389-ds-base

Package maintainers