MGASA-2022-0106

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2022-0106.html
Import Source
https://advisories.mageia.org/MGASA-2022-0106.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2022-0106
Related
Published
2022-03-21T20:18:30Z
Modified
2022-03-21T19:30:44Z
Summary
Updated 389-ds-base packages fix security vulnerability
Details

A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash. (CVE-2021-4091)

References
Credits

Affected packages

Mageia:8 / 389-ds-base

Package

Name
389-ds-base
Purl
pkg:rpm/mageia/389-ds-base?distro=mageia-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.4.0.26-8.2.mga8

Ecosystem specific 

{
    "section": "core"
}