Lucene search
K

2250 matches found

Rockylinux
Rockylinux
added 6 days ago6 views

389-ds:1.4 security update

An update is available for 389-ds-base, module.389-ds-base. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list 389 Directory Server is an LDAP version 3 LDAPv3...

8.8CVSS6.2AI score0.0067EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/07/08 12:25 p.m.6 views

389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS6.2AI score0.0067EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/08 12:25 p.m.7 views

389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND

A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. After a successful SASL bind with integrity protection SSF 0, an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet that is copied into a 512-byte heap receive buffer...

8.8CVSS6.1AI score0.00627EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/07/08 12:3 p.m.4 views

389-ds-base security update

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list 389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The ba...

8.8CVSS6.2AI score0.0067EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/07/08 11:36 a.m.7 views

Important: Red Hat Security Advisory: 389-ds-base security update

An update for 389-ds-base is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

8.8CVSS6.2AI score0.0067EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/07/08 10:38 a.m.17 views

Important: Red Hat Security Advisory: Red Hat Directory Server 13.2 container image update

An updated Red Hat Directory Server 13.2 container image for RHEL 10 is now available in the Red Hat container registry, including bug fixes and security patches. Red Hat Directory Server is an LDAPv3-compliant directory server. The image is maintained by Red Hat and updated regularly. To pull th...

8.8CVSS5.9AI score0.0067EPSS
Exploits0References5
EUVD
EUVD
added 2026/07/08 10:15 a.m.5 views

EUVD-2026-42213

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score0.003EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/08 10:15 a.m.7 views

CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score0.003EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/08 10:15 a.m.47 views

CVE-2026-15041 389-ds-base: 389-ds-base: non-constant-time comparison in pbkdf2-sha256 password verification

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS0.003EPSS
Exploits0References2
CVE
CVE
added 2026/07/08 10:15 a.m.20 views

CVE-2026-15041

The CVE describes a flaw in 389 Directory Server (389-ds-base): non-constant-time comparison in the PBKDF2-SHA256 password verification uses standard memcmp() instead of a constant-time function. This could allow a remote attacker to leverage timing measurements of LDAP bind attempts to infer par...

3.7CVSS5.9AI score0.003EPSS
Exploits0References2Affected Software3
RedhatCVE
RedhatCVE
added 2026/07/08 10:15 a.m.5 views

CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score0.003EPSS
Exploits0References3
OSV
OSV
added 2026/07/08 10:9 a.m.7 views

RHSA-2026:36206 Red Hat Security Advisory: 389-ds:1.4 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References12
OSV
OSV
added 2026/07/08 10:9 a.m.5 views

RHSA-2026:36200 Red Hat Security Advisory: redhat-ds:11 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References13
OSV
OSV
added 2026/07/08 10:9 a.m.5 views

RHSA-2026:36201 Red Hat Security Advisory: 389-ds:1.4 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References12
OSV
OSV
added 2026/07/08 10:9 a.m.4 views

RHSA-2026:36197 Red Hat Security Advisory: 389-ds:1.4 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2026/07/08 9:26 a.m.4 views

389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS6.2AI score0.0067EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/08 9:26 a.m.6 views

Important: Red Hat Security Advisory: redhat-ds:12 security update

An update for the redhat-ds:12 module is now available for Red Hat Directory Server 12.2 E4S for RHEL 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS6.2AI score0.0067EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/07/08 9:26 a.m.5 views

389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND

A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. After a successful SASL bind with integrity protection SSF 0, an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet that is copied into a 512-byte heap receive buffer...

8.8CVSS6.1AI score0.00627EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/07/08 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-15041

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a...

3.7CVSS6.1AI score0.003EPSS
Exploits0References4
Amazon
Amazon
added 2026/07/08 12:0 a.m.6 views

Important: 389-ds-base

Issue Overview: An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading t...

7.6CVSS6.2AI score0.0067EPSS
Exploits0
Rows per page
Query Builder