CVE-2016-0741

Priority
Description
slapd/connection.c in 389 Directory Server (formerly Fedora Directory
Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of
service (infinite loop and connection blocking) by leveraging an abnormally
closed connection.
Notes
 leosilva> code is quite different in trusty than patch, probably a trick backport.
 ebarretto> only affects 1.3.4 and up
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (code not present)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.3.4.9-1)
Ubuntu 18.04 LTS (Bionic Beaver):released (1.3.7.10-1ubuntu1)
Ubuntu 18.10 (Cosmic Cuttlefish):needs-triage
Ubuntu 19.04 (Disco Dingo):needs-triage
Patches:
Other:https://pagure.io/389-ds-base/c/cd45d032421b0ecf76d8cbb9b1c3aeef7680d9a2
More Information

Updated: 2019-01-14 21:18:14 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)