CVE-2018-1054 - An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filte

CVE-2018-1054

Summary

An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filters, affecting all versions including 1.4.x. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.

References

Vulnerable Configurations

cpe:2.3:a:fedoraproject:389_directory_server:-:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:-:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.1.46:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.1.46:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc4:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc4:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a4:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a4:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc6:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc6:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc7:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc7:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.7:alpha3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.7:alpha3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:alpha1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:alpha1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:alpha2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:alpha2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:alpha3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:alpha3:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:rc2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8:rc2:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.9.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.9.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10:alpha8:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10:alpha8:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10:rc1:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.10.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.17:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.17:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.20:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.20:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.21:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.21:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.22:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.22:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.23:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.23:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.25:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.25:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.26:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.11.26:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.2.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.17:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.17:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.18:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.18:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.22:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.1.22:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.22:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.22:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.23:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.23:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.24:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.24:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.26:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.26:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.27:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.2.27:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.3.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.4.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.16:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.17:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.17:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.18:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.18:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.19:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.11:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.12:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.13:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.14:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.15:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.7.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.7:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.8:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.9:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.8.10:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.9.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.9.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.9.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.3.9.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:389_directory_server:1.4.0.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 17-07-2018 - 01:29)
Impact:
Exploitability:

CWE

CWE-125

CAPEC

Infiltration of Hardware Development Environment
An attacker, leveraging the ability to manipulate components of primary support systems and tools within the development and production environments, inserts malicious software within the hardware and/or firmware development environment. The infiltration purpose is to alter developed hardware components in a system destined for deployment at the victim's organization, for the purpose of disruption or further compromise.
Overread Buffers
An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

redhat via4

advisories

bugzilla

id	1537314
title	VE-2018-1054 389-ds-base: remote Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8 in collate.c

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 7 is installed
oval oval:com.redhat.rhba:tst:20150364027

AND
comment 389-ds-base is earlier than 0:1.3.6.1-28.el7_4
oval oval:com.redhat.rhsa:tst:20180414001
comment 389-ds-base is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20151554002

AND

comment 389-ds-base-devel is earlier than 0:1.3.6.1-28.el7_4
oval oval:com.redhat.rhsa:tst:20180414003
comment 389-ds-base-devel is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20151554004

AND

comment 389-ds-base-libs is earlier than 0:1.3.6.1-28.el7_4
oval oval:com.redhat.rhsa:tst:20180414005
comment 389-ds-base-libs is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20151554006

AND

comment 389-ds-base-snmp is earlier than 0:1.3.6.1-28.el7_4
oval oval:com.redhat.rhsa:tst:20180414007
comment 389-ds-base-snmp is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhsa:tst:20162594008

rhsa

id	RHSA-2018:0414
released	2018-03-06
severity	Important
title	RHSA-2018:0414: 389-ds-base security and bug fix update (Important)

bugzilla

id	1537314
title	CVE-2018-1054 389-ds-base: remote Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8 in collate.c

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 6 is installed
oval oval:com.redhat.rhba:tst:20111656003

AND

comment 389-ds-base is earlier than 0:1.2.11.15-94.el6_9
oval oval:com.redhat.rhsa:tst:20180515001
comment 389-ds-base is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20151554002

AND

comment 389-ds-base-devel is earlier than 0:1.2.11.15-94.el6_9
oval oval:com.redhat.rhsa:tst:20180515003
comment 389-ds-base-devel is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20151554004

AND

comment 389-ds-base-libs is earlier than 0:1.2.11.15-94.el6_9
oval oval:com.redhat.rhsa:tst:20180515005
comment 389-ds-base-libs is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20151554006

rhsa

id	RHSA-2018:0515
released	2018-03-13
severity	Important
title	RHSA-2018:0515: 389-ds-base security update (Important)

rpms

389-ds-base-0:1.3.6.1-28.el7_4
389-ds-base-debuginfo-0:1.3.6.1-28.el7_4
389-ds-base-devel-0:1.3.6.1-28.el7_4
389-ds-base-libs-0:1.3.6.1-28.el7_4
389-ds-base-snmp-0:1.3.6.1-28.el7_4
389-ds-base-0:1.2.11.15-94.el6_9
389-ds-base-debuginfo-0:1.2.11.15-94.el6_9
389-ds-base-devel-0:1.2.11.15-94.el6_9
389-ds-base-libs-0:1.2.11.15-94.el6_9

refmap via4

bid	103228
confirm	https://bugzilla.redhat.com/show_bug.cgi?id=1537314 https://pagure.io/389-ds-base/issue/49545
mlist	[debian-lts-announce] 20180715 [SECURITY] [DLA 1428-1] 389-ds-base security update

Last major update

17-07-2018 - 01:29

Published

07-03-2018 - 13:29

Last modified

17-07-2018 - 01:29