Lucene search
Gentoo FoundationMGASA-2014-0062HistoryFeb 12, 2014 - 9:20 p.m.
Updated openldap packages fix security vulnerability
2014-02-1221:20:43
Gentoo Foundation
advisories.mageia.org
12
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.94 High
EPSS
Percentile
99.1%
A denial of service flaw was found in the way the OpenLDAP server daemon (slapd) performed reference counting when using the rwm (rewrite/remap) overlay. A remote attacker able to query the OpenLDAP server could use this flaw to crash the server by immediately unbinding from the server after sending a search request (CVE-2013-4449).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | openldap | <Β 2.4.33-7.1 | openldap-2.4.33-7.1.mga3 |
| Mageia | 4 | noarch | openldap | <Β 2.4.38-1.1 | openldap-2.4.38-1.1.mga4 |
Related
nessus
nessus
Oracle Linux 5 : openldap (ELSA-2014-0206)
2014-02-25 00:00:00
CentOS 5 : openldap (CESA-2014:0206)
2014-02-25 00:00:00
Scientific Linux Security Update : openldap on SL6.x i386/x86_64 (20140203)
2014-02-04 00:00:00
securityvulns
securityvulns
OpenLDAP DoS
2014-04-07 00:00:00
[ MDVSA-2014:026 ] openldap
2014-04-07 00:00:00
OpenLDAP multiple security vulnerabilities
2015-04-13 00:00:00
openvas
openvas
RedHat Update for openldap RHSA-2014:0206-01
2014-02-25 00:00:00
OpenLDAP < 2.4.40 DoS Vulnerability
2021-11-02 00:00:00
Fedora Update for openldap FEDORA-2014-2012
2014-02-13 00:00:00
debiancve
debiancve
CVE-2013-4449
2014-02-05 18:55:00
checkpoint_advisories
checkpoint_advisories
OpenLDAP rwm Overlay Denial of Service (CVE-2013-4449)
2013-12-22 00:00:00
OpenLDAP rwm Overlay Denial of Service - ver 2 (CVE-2013-4449)
2014-05-18 00:00:00
redhat
redhat
(RHSA-2014:0206) Moderate: openldap security update
2014-02-24 00:00:00
(RHSA-2014:0126) Moderate: openldap security and bug fix update
2014-02-03 00:00:00
ubuntucve
ubuntucve
CVE-2013-4449
2014-02-05 00:00:00
oraclelinux
oraclelinux
openldap security and bug fix update
2014-02-03 00:00:00
openldap security update
2014-02-24 00:00:00
prion
prion
Design/Logic Flaw
2014-02-05 18:55:00
fedora
fedora
[SECURITY] Fedora 20 Update: openldap-2.4.39-2.fc20
2014-02-11 23:13:08
[SECURITY] Fedora 19 Update: openldap-2.4.39-2.fc19
2014-03-11 04:01:35
f5
f5
K16882 : OpenLDAP vulnerability CVE-2013-4449
2015-07-02 00:00:00
SOL16882 - OpenLDAP vulnerability CVE-2013-4449
2015-07-02 00:00:00
centos
centos
openldap security update
2014-02-04 05:35:44
compat, openldap security update
2014-02-24 19:35:05
amazon
amazon
Medium: openldap
2014-02-26 16:22:00
seebug
seebug
Cisco Unified Communications Managerζη»ζε‘ζΌζ΄
2014-04-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:56:00
cve
cve
CVE-2013-4449
2014-02-05 18:55:00
ubuntu
ubuntu
OpenLDAP vulnerabilities
2015-05-26 00:00:00
osv
osv
openldap - security update
2015-03-30 00:00:00
openldap - security update
2015-04-18 00:00:00
debian
debian
[SECURITY] [DSA 3209-1] openldap security update
2015-03-30 21:05:49
[SECURITY] [DLA 203-1] openldap security update
2015-04-18 15:26:48
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.94 High
EPSS
Percentile
99.1%
Related for MGASA-2014-0062