An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/cve-2014-8182 | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8182 | Exploit Issue Tracking Patch Third Party Advisory |
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2014-8182 | Exploit Issue Tracking Patch Third Party Advisory |
https://security-tracker.debian.org/tracker/CVE-2014-8182 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2020-01-02T22:20:44
Updated: 2020-01-02T22:20:44
Reserved: 2014-10-10T00:00:00
Link: CVE-2014-8182
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-02T23:15:11.747
Modified: 2020-01-09T16:39:31.477
Link: CVE-2014-8182
JSON object: View
Redhat Information
No data.
CWE