CVE-2014-3562

Published: 21 August 2014

Red Hat Directory Server 8 and 389 Directory Server, when debugging is enabled, allows remote attackers to obtain sensitive replicated metadata by searching the directory.

Priority

Status

Package	Release	Status
389-ds-base Launchpad, Ubuntu, Debian	artful	Not vulnerable (1.3.4.14-1)
	bionic	Not vulnerable (1.3.4.14-1)
	cosmic	Not vulnerable (1.3.4.14-1)
	disco	Not vulnerable (1.3.4.14-1)
	lucid	Does not exist
	precise	Ignored (end of life)
	trusty	Does not exist (trusty was needed)
	upstream	Released (1.3.2.21-1)
	utopic	Ignored (end of life)
	vivid	Ignored (end of life)
	wily	Ignored (end of life)
	xenial	Not vulnerable (1.3.4.9-1)
	yakkety	Not vulnerable (1.3.4.14-1)
	zesty	Not vulnerable (1.3.4.14-1)

References

https://www.cve.org/CVERecord?id=CVE-2014-3562
NVD
Launchpad
Debian

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757437

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›