[Pkg-fedora-ds-maintainers] Bug#730115: Bug#730115: 389-ds-base: CVE-2013-4485: DoS due to improper handling of ger attr searches
Timo Aaltonen
tjaalton at ubuntu.com
Sun Dec 8 14:26:04 UTC 2013
On 21.11.2013 17:38, Salvatore Bonaccorso wrote:
> Package: 389-ds-base
> Severity: grave
> Tags: security upstream
>
> Hi Timo,
>
> the following vulnerability was published for ds-base.
>
> CVE-2013-4485[0]:
> DoS due to improper handling of ger attr searches
>
> See Red Hat bugzilla entry for the patch and details.
>
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
This, and the four other open CVE's are fixed in git by v1.3.2.8.
trying to find a sponsor for it to get these finally fixed.
--
t
More information about the Pkg-fedora-ds-maintainers
mailing list