CVE-2021-3480
Description
A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer dereference during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The highest threat from this vulnerability is to system availability.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
2.58
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Slapi-nis update (ELSA-2021-2032) slapi-nis-0.56.5-4.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update bind-dyndb-ldap-11.6-2.module+el8.4.0+9328+4ec4e316.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update bind-dyndb-ldap-debugsource-11.6-2.module+el8.4.0+9328+4ec4e316.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-client-4.9.2-3.module+el8.4.0+10412+5ecb5b37.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-client-common-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-client-epn-4.9.2-3.module+el8.4.0+10412+5ecb5b37.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-client-samba-4.9.2-3.module+el8.4.0+10412+5ecb5b37.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-common-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-debugsource-4.9.2-3.module+el8.4.0+10412+5ecb5b37.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-healthcheck-0.7-3.module+el8.4.0+9007+5084bdd8.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-healthcheck-core-0.7-3.module+el8.4.0+9007+5084bdd8.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-python-compat-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-selinux-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-server-4.9.2-3.module+el8.4.0+10412+5ecb5b37.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-server-common-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-server-dns-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update ipa-server-trust-ad-4.9.2-3.module+el8.4.0+10412+5ecb5b37.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update opendnssec-2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update opendnssec-debugsource-2.1.7-1.module+el8.4.0+9007+5084bdd8.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update python3-ipaclient-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update python3-ipalib-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update python3-ipaserver-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update python3-ipatests-4.9.2-3.module+el8.4.0+10412+5ecb5b37.noarch.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update slapi-nis-0.56.6-2.module+el8.4.0+10615+2234cc2c.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update slapi-nis-debugsource-0.56.6-2.module+el8.4.0+10615+2234cc2c.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update softhsm-2.6.0-5.module+el8.4.0+10227+076cd560.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update softhsm-debugsource-2.6.0-5.module+el8.4.0+10227+076cd560.x86_64.rpm | Linux |
| (RHSA-2021:1983) idm:DL1 security update softhsm-devel-2.6.0-5.module+el8.4.0+10227+076cd560.x86_64.rpm | Linux |
| (RHSA-2021:2032) slapi-nis security and bug fix update slapi-nis-0.56.5-4.el7_9.x86_64.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-pyusb-1.0.0-9.module+el8.4.0+430+1dcf16bb.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-yubico-1.3.2-9.module+el8.4.0+430+1dcf16bb.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-jwcrypto-0.5.0-1.module+el8.4.0+430+1dcf16bb.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-kdcproxy-0.4-5.module+el8.3.0+244+0b2ae752.noarch.rpm | Linux |
| (RHSA-2021:2032)Important: security and bug fix update slapi-nis-debuginfo-0.56.5-4.el7_9.x86_64.rpm | Linux |
| slapi-nis Security Update (ALAS-2021-1646) slapi-nis-0.56.5-4.amzn2.x86_64.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) softhsm-devel-2.6.0-5.module+el8.4.0+429+6bd33fea.x86_64.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) softhsm-2.6.0-5.module+el8.4.0+429+6bd33fea.x86_64.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-yubico-1.3.2-9.1.module+el8.7.0+1074+aae18f3a.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-qrcode-core-5.1-12.module+el8.4.0+429+6bd33fea.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-qrcode-5.1-12.module+el8.4.0+429+6bd33fea.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-pyusb-1.0.0-9.1.module+el8.7.0+1074+aae18f3a.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-jwcrypto-0.5.0-1.1.module+el8.7.0+1074+aae18f3a.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) python3-custodia-0.6.0-3.module+el8.4.0+429+6bd33fea.noarch.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) opendnssec-2.1.7-1.module+el8.4.0+429+6bd33fea.x86_64.rpm | Linux |
| idm:DL1 security update (RLSA-2021:1983) custodia-0.6.0-3.module+el8.4.0+429+6bd33fea.noarch.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234