Discovery API Icon
Discovery API
Security Advisory Icon
Security Advisory
Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2015-6908

Published: September 11, 2015Last modified: November 10, 2023

Description

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSopenldapNot affected (2.6.3-r6)
StreamopenldapNot affected (2.6.6-r0)

References

ON THIS PAGE