INFSA-2024:6569: 389-ds:1.4 security update
Information about definition
Identificator: INFSA-2024:6569
Type: security
Release date: 2024-10-10 05:46:36 UTC
Information about package
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Vulnerabilities description
- CVE-2024-5953
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-5953
|
no information | 5.7 | no information |
Updated packages