A flaw was found in the 389-ds-base LDAP Server. This issue occurs when issuing a Modify DN LDAP operation through the ldap protocol, when the function return value is not tested and a NULL pointer is dereferenced. If a privileged user performs a ldap MODDN operation after a failed operation, it could lead to a Denial of Service (DoS) or system crash.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/2xxx/CVE-2025-2487.json",
"cna_assigner": "redhat",
"cwe_ids": [
"CWE-476"
]
}{
"source": "AFFECTED_FIELD",
"extracted_events": [
{
"introduced": "2.4.0"
},
{
"last_affected": "2.4.6"
},
{
"introduced": "2.5.0"
},
{
"last_affected": "2.5.3"
},
{
"introduced": "3.0.0"
},
{
"last_affected": "3.0.6"
},
{
"introduced": "2.6.0"
},
{
"last_affected": "2.6.1"
}
]
}