21 matches found
Debian: Security Advisory (DLA-203-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2015-1545
The derefparseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service NULL pointer dereference and crash via an empty attribute list in a deref control in a search request...
Mageia: Security Advisory (MGASA-2015-0143)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:1077-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apple Mac OS X Security Updates (HT210788)-02
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
macOS 10.15.x < 10.15.2 / 10.14.x < 10.14.6 Security Update 2019-002 / 10.13.x < 10.13.6 Security Update 2019-007
The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.6 Security Update 2019-007, 10.14.x prior to 10.14.6 Security Update 2019-002, or 10.15.x prior to 10.15.2. It is, therefore, affected by multiple vulnerabilities : - slapd in OpenLDAP before 2.4.30 allows...
openSUSE Security Update : openldap2 (openSUSE-2015-526)
OpenLDAP was updated to fix two security issues and one bug. The following vulnerabilities were fixed : - CVE-2015-1546: slapd crash in valueReturnFilter cleanup bnc916914 - CVE-2015-1545: slapd crashes on search with deref control and empty attr list bnc916897 The following non-security bug was...
OpenLDAP slapd Deref Overlay Null Pointer Dereference (CVE-2015-1545)
A denial of service vulnerability exists in OpenLDAP. The vulnerability is due to NULL pointer dereference in the Deref overlay of slapd when certain LDAP request messages are processed. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted packet to the...
Ubuntu: Security Advisory (USN-2622-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : OpenLDAP vulnerabilities (USN-2622-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2622-1 advisory. It was discovered that OpenLDAP incorrectly handled certain search queries that returned empty attributes. A remote attacker could use this issue to caus...
SuSE 11.3 Security Update : openldap2 (SAT Patch Number 10635)
openldap2 was updated to fix three security issues and one non-security bug. The following vulnerabilities were fixed : - A remote attacker could cause a denial of service slapd crash by unbinding immediately after a search request. bnc846389, CVE-2013-4449 - A remote attacker could cause a denia...
Fedora Update for openldap FEDORA-2015-2055
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : openldap-2.4.40-3.fc21 (2015-2055)
CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible withou...
[SECURITY] [DSA 3209-1] openldap security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3209-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 30, 2015 http://www.debian.org/security/faq -...
Updated openldap packages fix CVE-2015-1545
Updated openldap packages fix security vulnerability: The deref overlay in slapd 2.4.13 through 2.4.40 dereferences a NULL pointer when a search request includes the Deref control with an empty list of attributes to return missing input validation. This allows a remote unauthenticated client to...
MGASA-2015-0143 Updated openldap packages fix CVE-2015-1545
Updated openldap packages fix security vulnerability: The deref overlay in slapd 2.4.13 through 2.4.40 dereferences a NULL pointer when a search request includes the Deref control with an empty list of attributes to return missing input validation. This allows a remote unauthenticated client to...
SOL16343 - OpenLDAP vulnerabilities CVE-2015-1545 and CVE-2015-1546
Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...
[SECURITY] [DSA 3209-1] openldap security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3209-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 30, 2015 http://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3209-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
BELL-CVE-2015-1545 CVE-2015-1545 does not affect BellSoft software
Bulletin has no description...