Lucene search
GoogleOSV:SUSE-SU-2024:3257-1HistorySep 16, 2024 - 12:39 p.m.
Security update for 389-ds
2024-09-1612:39:40
Google
osv.dev
389-ds
security update
cve-2024-3657
cve-2024-5953
cve-2024-2199
dos
userpassword
kerberos
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.7
Confidence
High
This update for 389-ds fixes the following issues:
- Update to version 1.4.4.20~git3.e7ac6d87:
- CVE-2024-3657: DOS via via specially crafted kerberos AS-REQ request. (bsc#1225512)
- CVE-2024-5953: Malformed userPassword hashes may cause a denial of service. (bsc#1226277)
- CVE-2024-2199: Malformed userPassword may cause crash at do_modify in slapd/modify.c. (bsc#1225507)
Related
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : 389-ds (SUSE-SU-2024:3082-1)
2024-09-03 00:00:00
SUSE SLES15 Security Update : 389-ds (SUSE-SU-2024:3257-1)
2024-09-17 00:00:00
SUSE SLES15 Security Update : 389-ds (SUSE-SU-2024:2910-1)
2024-08-15 00:00:00
openvas
openvas
openSUSE: Security Advisory for 389 (SUSE-SU-2024:3082-1)
2024-09-04 00:00:00
Fedora: Security Advisory (FEDORA-2024-ac07913be8)
2024-08-15 00:00:00
Fedora: Security Advisory (FEDORA-2024-c8290315df)
2024-08-16 00:00:00
osv
osv
Security update for 389-ds
2024-08-14 14:17:45
Security update for 389-ds
2024-09-02 14:44:56
Security update for 389-ds
2024-09-12 11:16:05
redhat
redhat
(RHSA-2024:4633) Important: 389-ds-base security update
2024-07-18 15:05:56
(RHSA-2024:5690) Important: 389-ds:1.4 security update
2024-08-21 11:10:05
(RHSA-2024:3837) Important: 389-ds-base security update
2024-06-11 18:27:30
fedora
fedora
[SECURITY] Fedora 39 Update: 389-ds-base-2.4.6-1.fc39
2024-08-15 14:23:11
[SECURITY] Fedora 40 Update: 389-ds-base-3.0.4-2.fc40
2024-08-15 02:34:18
oraclelinux
oraclelinux
389-ds security update
2024-07-03 00:00:00
389-ds-base security update
2024-06-04 00:00:00
389-ds-base security update
2024-06-12 00:00:00
almalinux
almalinux
Important: 389-ds-base security update
2024-06-11 00:00:00
Important: 389-ds security update
2024-07-02 00:00:00
Moderate: 389-ds:1.4 security update
2024-09-11 00:00:00
rocky
rocky
389-ds-base security update
2024-06-14 14:00:35
389-ds security update
2024-07-15 12:17:49
389-ds:1.4 security update
2024-09-17 00:54:54
debiancve
debiancve
cvelist
cvelist
ubuntucve
ubuntucve
vulnrichment
vulnrichment
redhatcve
redhatcve
cve
cve
redos
redos
ROS-20240806-18
2024-08-06 00:00:00
ROS-20240806-17
2024-08-06 00:00:00
nvd
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.7
Confidence
High
Related for OSV:SUSE-SU-2024:3257-1