Candidate: CVE-2013-2219
PublicDate: 2013-07-31 13:20:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2219
Description:
 The Red Hat Directory Server before 8.2.11-13 and 389 Directory Server do
 not properly restrict access to entity attributes, which allows remote
 authenticated users to obtain sensitive information via a search query for
 the attribute.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=718325
 https://bugzilla.redhat.com/show_bug.cgi?id=979508
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_389-ds-base:
upstream_389-ds-base: released (1.3.2.9)
lucid_389-ds-base: DNE
precise_389-ds-base: ignored (reached end-of-life)
precise/esm_389-ds-base: DNE (precise was needs-triage)
quantal_389-ds-base: ignored (reached end-of-life)
raring_389-ds-base: ignored (reached end-of-life)
saucy_389-ds-base: ignored (reached end-of-life)
trusty_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
trusty/esm_389-ds-base: DNE (trusty was not-affected [1.3.2.11-0ubuntu1])
utopic_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
vivid_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
vivid/stable-phone-overlay_389-ds-base: DNE
vivid/ubuntu-core_389-ds-base: DNE
wily_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
xenial_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
yakkety_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
zesty_389-ds-base: not-affected (1.3.2.11-0ubuntu1)
devel_389-ds-base: not-affected (1.3.2.11-0ubuntu1)