INFSA-2024:3047: 389-ds:1.4 security update
Information about definition
Identificator: INFSA-2024:3047
Type: security
Release date: 2024-10-10 05:52:39 UTC
Information about package
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Vulnerabilities description
- CVE-2024-1062
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-1062
|
no information | 5.5 | no information |
Updated packages