CVE-2008-2952

EPSS 55.3%

openldap - denial of service

發布日:2008/7/1修改日:2026/4/28

也稱為:DEBIAN-CVE-2008-2952

描述

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.

受影響套件(3)

Debian/openldapfrom 0, < 2.4.10-3
Debian/openldapfrom 0, < 2.4.10-2+lenny1
Debian/openldap2.3from 0, < 2.3.30-5+etch2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-2952