Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0212HistoryJul 28, 2010 - 12:48 p.m.
CVE-2010-0212
2010-07-2812:48:00
Debian Security Bug Tracker
security-tracker.debian.org
7
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.965 High
EPSS
Percentile
99.6%
OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call with a zero-length RDN destination string, which is not properly handled by the smr_normalize function and triggers a NULL pointer dereference in the IA5StringNormalize function in schema_init.c, as demonstrated using the Codenomicon LDAPv3 test suite.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openldap | <Â 2.4.23-1 | openldap_2.4.23-1_all.deb |
| Debian | 11 | all | openldap | <Â 2.4.23-1 | openldap_2.4.23-1_all.deb |
| Debian | 10 | all | openldap | <Â 2.4.23-1 | openldap_2.4.23-1_all.deb |
| Debian | 999 | all | openldap | <Â 2.4.23-1 | openldap_2.4.23-1_all.deb |
| Debian | 13 | all | openldap | <Â 2.4.23-1 | openldap_2.4.23-1_all.deb |
Related
checkpoint_advisories
checkpoint_advisories
OpenLDAP Modrdn RDN NULL String Denial of Service (CVE-2010-0212)
2010-10-13 00:00:00
cve
cve
CVE-2010-0212
2010-07-28 12:48:00
prion
prion
Null pointer dereference
2010-07-28 12:48:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:44:09
ubuntucve
ubuntucve
CVE-2010-0212
2010-07-28 00:00:00
nessus
nessus
Fedora 12 : openldap-2.4.19-6.fc12 (2010-11319)
2010-11-01 00:00:00
openSUSE Security Update : libldap-2_4-2 (openSUSE-SU-2010:0546-1)
2010-08-26 00:00:00
Debian DSA-2077-1 : openldap - several vulnerabilities
2010-08-03 00:00:00
openvas
openvas
CentOS Update for compat-openldap CESA-2010:0542 centos5 i386
2011-08-09 00:00:00
Fedora Update for openldap FEDORA-2010-11319
2010-11-16 00:00:00
Ubuntu: Security Advisory (USN-965-1)
2010-08-13 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:142 ] openldap
2010-07-30 00:00:00
OpenLDAP multiple security vulnerabilities
2010-07-30 00:00:00
Apple Mac OS X and QuickTime multiple security vulnerabilities
2013-11-18 00:00:00
ubuntu
ubuntu
OpenLDAP vulnerabilities
2010-08-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package openldap2.4 version 2.4.23-alt1
2010-06-30 00:00:00
redhat
redhat
(RHSA-2010:0542) Moderate: openldap security update
2010-07-20 00:00:00
(RHSA-2010:0622) Important: rhev-hypervisor security and bug fix update
2010-08-19 00:00:00
centos
centos
compat, openldap security update
2010-07-21 22:18:04
osv
osv
openldap - potential code execution
2010-07-29 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: openldap-2.4.19-6.fc12
2010-10-31 21:33:48
[SECURITY] Fedora 13 Update: openldap-2.4.21-10.fc13
2010-08-23 22:04:44
debian
debian
[SECURITY] [DSA 2077-1] New openldap packages fix potential code execution
2010-07-29 19:08:28
oraclelinux
oraclelinux
openldap security update
2010-07-20 00:00:00
vmware
vmware
gentoo
gentoo
OpenLDAP: Multiple vulnerabilities
2014-06-30 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.965 High
EPSS
Percentile
99.6%
Related for DEBIANCVE:CVE-2010-0212