[Secure-testing-team] Bug#860125: 389-ds-base: CVE-2017-2668: Remote crash via crafted LDAP messages
Salvatore Bonaccorso
carnil at debian.org
Tue Apr 11 19:28:30 UTC 2017
Source: 389-ds-base
Version: 1.3.5.15-2
Severity: grave
Tags: upstream security
Hi,
the following vulnerability was published for 389-ds-base.
CVE-2017-2668[0]:
Remote crash via crafted LDAP messages
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2017-2668
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2668
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1436575
Please adjust the affected versions in the BTS as needed. Do you have
any more information where it was fixed? Looking at [2] did not help.
[2] https://pagure.io/389-ds-base/issues
Regards,
Salvatore
More information about the Secure-testing-team
mailing list