Lucene search
Gentoo FoundationMGASA-2022-0134HistoryApr 10, 2022 - 12:20 a.m.
Updated 389-ds-base packages fix security vulnerability
2022-04-1000:20:39
Gentoo Foundation
advisories.mageia.org
16
0.001 Low
EPSS
Percentile
50.1%
A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication is required. The message triggers a segmentation fault that results in slapd crashing. (CVE-2022-0918) A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication. (CVE-2022-0996)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 8 | noarch | 389-ds-base | < 1.4.0.26-8.4 | 389-ds-base-1.4.0.26-8.4.mga8 |
Related
nessus
nessus
SUSE SLES15 Security Update : 389-ds (SUSE-SU-2022:1139-1)
2022-04-09 00:00:00
openSUSE 15 Security Update : 389-ds (openSUSE-SU-2022:1100-1)
2022-04-05 00:00:00
RHEL 7 : 389-ds-base (RHSA-2022:5239)
2022-06-28 00:00:00
redhat
redhat
(RHSA-2022:5823) Moderate: 389-ds:1.4 security update
2022-08-02 07:05:16
(RHSA-2022:5620) Moderate: 389-ds:1.4 security update
2022-07-19 14:39:26
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0134)
2022-04-11 00:00:00
CentOS: Security Advisory for 389-ds-base (CESA-2022:5239)
2022-08-03 00:00:00
Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2022-1881)
2022-06-17 00:00:00
oraclelinux
oraclelinux
389-ds-base security, bug fix, and enhancement update
2022-06-29 00:00:00
389-ds:1.4 security update
2022-08-03 00:00:00
389-ds-base security, bug fix, and enhancement update
2022-11-22 00:00:00
centos
centos
389 security update
2022-08-02 19:20:46
osv
osv
Moderate: 389-ds:1.4 security update
2022-08-02 00:00:00
Moderate: 389-ds:1.4 security update
2022-08-02 07:05:16
Moderate: 389-ds-base security, bug fix, and enhancement update
2022-11-15 00:00:00
almalinux
almalinux
Moderate: 389-ds:1.4 security update
2022-08-02 00:00:00
Moderate: 389-ds-base security, bug fix, and enhancement update
2022-11-15 00:00:00
rocky
rocky
389-ds:1.4 security update
2022-08-02 07:05:16
389-ds-base security, bug fix, and enhancement update
2022-11-15 06:17:19
suse
suse
Security update for 389-ds (important)
2022-04-04 00:00:00
amazon
amazon
Medium: 389-ds-base
2022-07-19 00:26:00
ubuntucve
ubuntucve
CVE-2022-0918
2022-03-16 00:00:00
CVE-2022-0996
2022-03-23 00:00:00
prion
prion
Authentication flaw
2022-03-16 15:15:00
Authentication flaw
2022-03-23 20:15:00
cve
cve
CVE-2022-0918
2022-03-16 15:15:00
CVE-2022-0996
2022-03-23 20:15:00
cvelist
cvelist
CVE-2022-0918
2022-03-16 14:04:23
CVE-2022-0996
2022-03-23 19:46:16
debiancve
debiancve
CVE-2022-0918
2022-03-16 15:15:00
CVE-2022-0996
2022-03-23 20:15:00
redhatcve
redhatcve
CVE-2022-0918
2022-03-16 10:52:53
CVE-2022-0996
2022-03-21 04:03:13
veracode
veracode
Denial Of Service (DoS)
2022-06-02 20:59:51
Insufficient Session Expiration
2022-05-01 06:02:15
fedora
fedora
[SECURITY] Fedora 34 Update: 389-ds-base-2.0.15-1.fc34
2022-04-01 16:04:56
[SECURITY] Fedora 35 Update: 389-ds-base-2.0.15-1.fc35
2022-04-01 04:51:23
cnvd
cnvd
Red Hat 389 Directory Server Code Issue Vulnerability
2022-03-23 00:00:00
debian
debian
[SECURITY] [DLA 3399-1] 389-ds-base security update
2023-04-24 05:25:45