csaf_suse - suse-su-2024:2910-1

suse-su-2024:2910-1

Vulnerability from csaf_suse

Published

2024-08-14 14:17

Modified

2024-08-14 14:17

Summary

Security update for 389-ds

Notes

Title of the patch

Security update for 389-ds

Description of the patch

This update for 389-ds fixes the following issues: Security issues fixed: - CVE-2024-3657: Fixed potential denial of service via specially crafted kerberos AS-REQ request (bsc#1225512) - CVE-2024-5953: Fixed a denial of service caused by malformed userPassword hashes (bsc#1226277) - CVE-2024-2199: Fixed a crash caused by malformed userPassword in do_modify() (bsc#1225507) Non-security issues fixed: - crash when user does change password using iso-8859-1 encoding (bsc#1228912) - Update to version 2.2.10: Issue 2324 - Add a CI test (#6289) Issue 6284 - BUG - freelist ordering causes high wtime Issue 5327 - Fix test metadata Issue 5853 - Update Cargo.lock Issue 5962 - Rearrange includes for 32-bit support logic Issue 5973 - Fix fedora cop RawHide builds (#5974) Bump braces from 3.0.2 to 3.0.3 in /src/cockpit/389-console Issue 6254 - Enabling replication for a sub suffix crashes browser (#6255) Issue 6224 - d2entry - Could not open id2entry err 0 - at startup when having sub-suffixes (#6225) Issue 6183 - Slow ldif2db import on a newly created BDB backend (#6208) Issue 6170 - audit log buffering doesn't handle large updates Issue 6193 - Test failure: test_tls_command_returns_error_text Issue 6189 - CI tests fail with `[Errno 2] No such file or directory: '/var/cache/dnf/metadata_lock.pid'` Issue 6172 - RFE: improve the performance of evaluation of filter component when tested against a large valueset (like group members) (#6173) Issue 6092 - passwordHistory is not updated with a pre-hashed password (#6093) Issue 6080 - ns-slapd crash in referint_get_config (#6081) Issue 6117 - Fix the UTC offset print (#6118) Issue 5305 - OpenLDAP version autodetection doesn't work Issue 6112 - RFE - add new operation note for MFA authentications Issue 5842 - Add log buffering to audit log Issue 6103 - New connection timeout error breaks errormap (#6104) Issue 6067 - Improve dsidm CLI No Such Entry handling (#6079) Issue 6096 - Improve connection timeout error logging (#6097) Issue 6067 - Add hidden -v and -j options to each CLI subcommand (#6088) Issue 5487 - Fix various isses with logconv.pl (#6085) Issue 6052 - Paged results test sets hostname to `localhost` on test collection Issue 6061 - Certificate lifetime displayed as NaN Issue 6043, 6044 - Enhance Rust and JS bundling and add SPDX licenses for both (#6045) Issue 3555 - Remove audit-ci from dependencies (#6056) Issue 5647 - Fix unused variable warning from previous commit (#5670) issue 5647 - covscan: memory leak in audit log when adding entries (#5650) Issue 6047 - Add a check for tagged commits Issue 6041 - dscreate ds-root - accepts relative path (#6042) Issue 6034 - Change replica_id from str to int Issue 5938 - Attribute Names changed to lowercase after adding the Attributes (#5940) Issue 5870 - ns-slapd crashes at startup if a backend has no suffix (#5871) Issue 5939 - During an update, if the target entry is reverted in the entry cache, the server should not retry to lock it (#6007) Issue 5944 - Reversion of the entry cache should be limited to BETXN plugin failures (#5994) Issue 5954 - Disable Transparent Huge Pages

Patchnames

SUSE-2024-2910,SUSE-SLE-Module-Server-Applications-15-SP6-2024-2910,openSUSE-SLE-15.6-2024-2910

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for 389-ds",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for 389-ds fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2024-3657: Fixed potential denial of service via specially crafted kerberos AS-REQ request (bsc#1225512)\n- CVE-2024-5953: Fixed a denial of service caused by malformed userPassword hashes (bsc#1226277)\n- CVE-2024-2199: Fixed a crash caused by malformed userPassword in do_modify() (bsc#1225507)\n  \nNon-security issues fixed:\n\n- crash when user does change password using iso-8859-1 encoding (bsc#1228912)\n\n- Update to version 2.2.10:\n\n  Issue 2324 - Add a CI test (#6289)\n  Issue 6284 - BUG - freelist ordering causes high wtime\n  Issue 5327 - Fix test metadata\n  Issue 5853 - Update Cargo.lock\n  Issue 5962 - Rearrange includes for 32-bit support logic\n  Issue 5973 - Fix fedora cop RawHide builds (#5974)\n  Bump braces from 3.0.2 to 3.0.3 in /src/cockpit/389-console\n  Issue 6254 - Enabling replication for a sub suffix crashes browser (#6255)\n  Issue 6224 - d2entry - Could not open id2entry err 0 - at startup when having sub-suffixes (#6225)\n  Issue 6183 - Slow ldif2db import on a newly created BDB backend (#6208)\n  Issue 6170 - audit log buffering doesn\u0027t handle large updates\n  Issue 6193 - Test failure: test_tls_command_returns_error_text\n  Issue 6189 - CI tests fail with `[Errno 2] No such file or directory: \u0027/var/cache/dnf/metadata_lock.pid\u0027`\n  Issue 6172 - RFE: improve the performance of evaluation of filter component when tested against a large valueset (like group members) (#6173)\n  Issue 6092 - passwordHistory is not updated with a pre-hashed password (#6093)\n  Issue 6080 - ns-slapd crash in referint_get_config (#6081)\n  Issue 6117 - Fix the UTC offset print (#6118)\n  Issue 5305 - OpenLDAP version autodetection doesn\u0027t work\n  Issue 6112 - RFE - add new operation note for MFA authentications\n  Issue 5842 - Add log buffering to audit log\n  Issue 6103 - New connection timeout error breaks errormap (#6104)\n  Issue 6067 - Improve dsidm CLI No Such Entry handling (#6079)\n  Issue 6096 - Improve connection timeout error logging (#6097)\n  Issue 6067 - Add hidden -v and -j options to each CLI subcommand (#6088)\n  Issue 5487 - Fix various isses with logconv.pl (#6085)\n  Issue 6052 - Paged results test sets hostname to `localhost` on test collection\n  Issue 6061 - Certificate lifetime displayed as NaN\n  Issue 6043, 6044 - Enhance Rust and JS bundling and add SPDX licenses for both (#6045)\n  Issue 3555 - Remove audit-ci from dependencies (#6056)\n  Issue 5647 - Fix unused variable warning from previous commit (#5670)\n  issue 5647 - covscan: memory leak in audit log when adding entries (#5650)\n  Issue 6047 - Add a check for tagged commits\n  Issue 6041 - dscreate ds-root - accepts relative path (#6042)\n  Issue 6034 - Change replica_id from str to int\n  Issue 5938 - Attribute Names changed to lowercase after adding the Attributes (#5940)\n  Issue 5870 - ns-slapd crashes at startup if a backend has no suffix (#5871)\n  Issue 5939 - During an update, if the target entry is reverted in the entry cache, the server should not retry to lock it (#6007)\n  Issue 5944 - Reversion of the entry cache should be limited to BETXN plugin failures (#5994)\n  Issue 5954 - Disable Transparent Huge Pages\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2024-2910,SUSE-SLE-Module-Server-Applications-15-SP6-2024-2910,openSUSE-SLE-15.6-2024-2910",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2910-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2024:2910-1",
        "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242910-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2024:2910-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019198.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225507",
        "url": "https://bugzilla.suse.com/1225507"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225512",
        "url": "https://bugzilla.suse.com/1225512"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226277",
        "url": "https://bugzilla.suse.com/1226277"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228912",
        "url": "https://bugzilla.suse.com/1228912"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-2199 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-2199/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-3657 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-3657/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-5953 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-5953/"
      }
    ],
    "title": "Security update for 389-ds",
    "tracking": {
      "current_release_date": "2024-08-14T14:17:45Z",
      "generator": {
        "date": "2024-08-14T14:17:45Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2024:2910-1",
      "initial_release_date": "2024-08-14T14:17:45Z",
      "revision_history": [
        {
          "date": "2024-08-14T14:17:45Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                "product": {
                  "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                  "product_id": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                "product": {
                  "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                  "product_id": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                  "product_id": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                "product": {
                  "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                  "product_id": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                "product": {
                  "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
                  "product_id": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                "product": {
                  "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                  "product_id": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                "product": {
                  "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                  "product_id": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                  "product_id": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                "product": {
                  "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                  "product_id": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                "product": {
                  "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
                  "product_id": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                "product": {
                  "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                  "product_id": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                "product": {
                  "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                  "product_id": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                  "product_id": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                "product": {
                  "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                  "product_id": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                "product": {
                  "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
                  "product_id": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                "product": {
                  "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                  "product_id": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                "product": {
                  "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                  "product_id": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                  "product_id": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                "product": {
                  "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                  "product_id": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                "product": {
                  "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
                  "product_id": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
                  "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-server-applications:15:sp6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.6",
                "product": {
                  "name": "openSUSE Leap 15.6",
                  "product_id": "openSUSE Leap 15.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        },
        "product_reference": "libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-2199",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-2199"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-2199",
          "url": "https://www.suse.com/security/cve/CVE-2024-2199"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225507 for CVE-2024-2199",
          "url": "https://bugzilla.suse.com/1225507"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-08-14T14:17:45Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-2199"
    },
    {
      "cve": "CVE-2024-3657",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-3657"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in 389-ds-base. A specially-crafted LDAP query can potentially cause a failure on the directory server, leading to a denial of service",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-3657",
          "url": "https://www.suse.com/security/cve/CVE-2024-3657"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225512 for CVE-2024-3657",
          "url": "https://bugzilla.suse.com/1225512"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-08-14T14:17:45Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-3657"
    },
    {
      "cve": "CVE-2024-5953",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-5953"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-5953",
          "url": "https://www.suse.com/security/cve/CVE-2024-5953"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226277 for CVE-2024-5953",
          "url": "https://bugzilla.suse.com/1226277"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git2.345056d3-150600.8.7.2.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-08-14T14:17:45Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-5953"
    }
  ]
}

CVE-2024-3657 (GCVE-0-2024-3657)

Vulnerability from cvelistv5

Published

2024-05-28 12:53

Modified

2025-11-06 20:56

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-20 - Improper Input Validation

Summary

A flaw was found in 389-ds-base. A specially-crafted LDAP query can potentially cause a failure on the directory server, leading to a denial of service

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2024:3591	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3837	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4092	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4209	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4210	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4235	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4633	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:5690	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:6576	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:7458	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1632	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-3657	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2274401	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

Red Hat

Red Hat Directory Server 11.5 E4S for RHEL 8

Unaffected: 8060020250210084424.0ca98e7e < *
cpe:/a:redhat:directory_server_e4s:11.5::el8

Red Hat	Red Hat Directory Server 11.7 for RHEL 8	Unaffected: 8080020240909040333.f969626e < * cpe:/a:redhat:directory_server:11.7::el8
Red Hat	Red Hat Directory Server 11.8 for RHEL 8	Unaffected: 8090020240606122459.91529cd0 < * cpe:/a:redhat:directory_server:11.8::el8
Red Hat	Red Hat Directory Server 11.9 for RHEL 8	Unaffected: 8100020240604161237.37ed7c03 < * cpe:/a:redhat:directory_server:11.9::el8
Red Hat	Red Hat Directory Server 12.2 EUS for RHEL 9	Unaffected: 9020020240916150035.1674d574 < * cpe:/a:redhat:directory_server_eus:12.2::el9
Red Hat	Red Hat Directory Server 12.4 for RHEL 9	Unaffected: 9040020240604143706.1674d574 < * cpe:/a:redhat:directory_server:12.4::el9
Red Hat	Red Hat Enterprise Linux 7	Unaffected: 0:1.3.11.1-5.el7_9 < * cpe:/o:redhat:enterprise_linux:7::server cpe:/o:redhat:enterprise_linux:7::computenode cpe:/o:redhat:enterprise_linux:7::workstation cpe:/o:redhat:enterprise_linux:7::client
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8100020240613122040.25e700aa < * cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240807050952.6dbb3803 < * cpe:/a:redhat:rhel_eus:8.8::appstream
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:2.4.5-8.el9_4 < * cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	Unaffected: 0:2.2.4-9.el9_2 < * cpe:/a:redhat:rhel_eus:9.2::appstream
Red Hat	Red Hat Enterprise Linux 10	cpe:/o:redhat:enterprise_linux:10
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-3657",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-05T20:48:33.613730Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-05T20:49:13.347Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T20:37:48.319Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2024:3591",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3591"
          },
          {
            "name": "RHSA-2024:3837",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3837"
          },
          {
            "name": "RHSA-2024:4092",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4092"
          },
          {
            "name": "RHSA-2024:4209",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4209"
          },
          {
            "name": "RHSA-2024:4210",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4210"
          },
          {
            "name": "RHSA-2024:4235",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4235"
          },
          {
            "name": "RHSA-2024:4633",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4633"
          },
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2024-3657"
          },
          {
            "name": "RHBZ#2274401",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274401"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server_e4s:11.5::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.5 E4S for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8060020250210084424.0ca98e7e",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.7::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.7 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240909040333.f969626e",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.8::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.8 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8090020240606122459.91529cd0",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.9::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.9 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240604161237.37ed7c03",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server_eus:12.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:12",
          "product": "Red Hat Directory Server 12.2 EUS for RHEL 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "9020020240916150035.1674d574",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:12.4::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:12",
          "product": "Red Hat Directory Server 12.4 for RHEL 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "9040020240604143706.1674d574",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::server",
            "cpe:/o:redhat:enterprise_linux:7::computenode",
            "cpe:/o:redhat:enterprise_linux:7::workstation",
            "cpe:/o:redhat:enterprise_linux:7::client"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:1.3.11.1-5.el7_9",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240613122040.25e700aa",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240807050952.6dbb3803",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/a:redhat:enterprise_linux:9::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.4.5-8.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:9.2::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.2.4-9.el9_2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:10"
          ],
          "defaultStatus": "unaffected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 10",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2024-05-28T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in 389-ds-base. A specially-crafted LDAP query can potentially cause a failure on the directory server, leading to a denial of service"
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Important"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T20:56:31.849Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:3591",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3591"
        },
        {
          "name": "RHSA-2024:3837",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3837"
        },
        {
          "name": "RHSA-2024:4092",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4092"
        },
        {
          "name": "RHSA-2024:4209",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4209"
        },
        {
          "name": "RHSA-2024:4210",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4210"
        },
        {
          "name": "RHSA-2024:4235",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4235"
        },
        {
          "name": "RHSA-2024:4633",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4633"
        },
        {
          "name": "RHSA-2024:5690",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:5690"
        },
        {
          "name": "RHSA-2024:6576",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:6576"
        },
        {
          "name": "RHSA-2024:7458",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:7458"
        },
        {
          "name": "RHSA-2025:1632",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:1632"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-3657"
        },
        {
          "name": "RHBZ#2274401",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274401"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-04-10T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-05-28T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "389-ds-base: potential denial of service via specially crafted kerberos as-req request",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-20: Improper Input Validation"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-3657",
    "datePublished": "2024-05-28T12:53:03.399Z",
    "dateReserved": "2024-04-11T14:21:25.571Z",
    "dateUpdated": "2025-11-06T20:56:31.849Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-5953 (GCVE-0-2024-5953)

Vulnerability from cvelistv5

Published

2024-06-18 10:01

Modified

2025-11-06 23:15

Severity ?

5.7 (Medium) - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-1288 - Improper Validation of Consistency within Input

Summary

A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2024:4633	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4997	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:5192	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:5690	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:6153	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:6568	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:6569	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:6576	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:7458	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1632	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-5953	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2292104	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

Red Hat	Red Hat Directory Server 11.5 E4S for RHEL 8	Unaffected: 8060020250210084424.0ca98e7e < * cpe:/a:redhat:directory_server_e4s:11.5::el8
Red Hat	Red Hat Directory Server 11.7 for RHEL 8	Unaffected: 8080020240909040333.f969626e < * cpe:/a:redhat:directory_server:11.7::el8
Red Hat	Red Hat Directory Server 11.9 for RHEL 8	Unaffected: 8100020240902112955.37ed7c03 < * cpe:/a:redhat:directory_server:11.9::el8
Red Hat	Red Hat Directory Server 12.2 EUS for RHEL 9	Unaffected: 9020020240916150035.1674d574 < * cpe:/a:redhat:directory_server_eus:12.2::el9
Red Hat	Red Hat Directory Server 12.4 for RHEL 9	Unaffected: 9040020240723122852.1674d574 < * cpe:/a:redhat:directory_server:12.4::el9
Red Hat	Red Hat Enterprise Linux 7 Extended Lifecycle Support	Unaffected: 0:1.3.11.1-6.el7_9 < * cpe:/o:redhat:rhel_els:7
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8100020240910065753.25e700aa < * cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240807050952.6dbb3803 < * cpe:/a:redhat:rhel_eus:8.8::appstream
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:2.4.5-9.el9_4 < * cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	Unaffected: 0:2.2.4-9.el9_2 < * cpe:/a:redhat:rhel_eus:9.2::appstream
Red Hat	Red Hat Enterprise Linux 10	cpe:/o:redhat:enterprise_linux:10
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-5953",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-18T13:32:13.391886Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-18T13:33:04.416Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T20:56:21.647Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2024:4633",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4633"
          },
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2024-5953"
          },
          {
            "name": "RHBZ#2292104",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292104"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://github.com/389ds/389-ds-base",
          "defaultStatus": "affected",
          "packageName": "389-ds-base"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server_e4s:11.5::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.5 E4S for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8060020250210084424.0ca98e7e",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.7::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.7 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240909040333.f969626e",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.9::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.9 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240902112955.37ed7c03",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server_eus:12.2::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:12",
          "product": "Red Hat Directory Server 12.2 EUS for RHEL 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "9020020240916150035.1674d574",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:12.4::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:12",
          "product": "Red Hat Directory Server 12.4 for RHEL 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "9040020240723122852.1674d574",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:rhel_els:7"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:1.3.11.1-6.el7_9",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240910065753.25e700aa",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240807050952.6dbb3803",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/a:redhat:enterprise_linux:9::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.4.5-9.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:9.2::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.2.4-9.el9_2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:10"
          ],
          "defaultStatus": "unaffected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 10",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was discovered by T\u00eako Mihinto (Red Hat)."
        }
      ],
      "datePublic": "2024-06-13T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-1288",
              "description": "Improper Validation of Consistency within Input",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T23:15:48.251Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:4633",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4633"
        },
        {
          "name": "RHSA-2024:4997",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4997"
        },
        {
          "name": "RHSA-2024:5192",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:5192"
        },
        {
          "name": "RHSA-2024:5690",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:5690"
        },
        {
          "name": "RHSA-2024:6153",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:6153"
        },
        {
          "name": "RHSA-2024:6568",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:6568"
        },
        {
          "name": "RHSA-2024:6569",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:6569"
        },
        {
          "name": "RHSA-2024:6576",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:6576"
        },
        {
          "name": "RHSA-2024:7458",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:7458"
        },
        {
          "name": "RHSA-2025:1632",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:1632"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-5953"
        },
        {
          "name": "RHBZ#2292104",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292104"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-06-13T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-06-13T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "389-ds-base: malformed userpassword hash may cause denial of service",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-1288: Improper Validation of Consistency within Input"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-5953",
    "datePublished": "2024-06-18T10:01:56.714Z",
    "dateReserved": "2024-06-13T04:20:35.951Z",
    "dateUpdated": "2025-11-06T23:15:48.251Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2024-2199 (GCVE-0-2024-2199)

Vulnerability from cvelistv5

Published

2024-05-28 12:04

Modified

2025-11-06 21:48

Severity ?

5.7 (Medium) - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-20 - Improper Input Validation

Summary

A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2024:3591	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3837	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4092	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4209	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4210	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4235	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:4633	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:5690	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1632	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-2199	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2267976	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

Version: 0 ≤

Red Hat	Red Hat Directory Server 11.5 E4S for RHEL 8	Unaffected: 8060020250210084424.0ca98e7e < * cpe:/a:redhat:directory_server_e4s:11.5::el8
Red Hat	Red Hat Directory Server 11.8 for RHEL 8	Unaffected: 8090020240606122459.91529cd0 < * cpe:/a:redhat:directory_server:11.8::el8
Red Hat	Red Hat Directory Server 11.9 for RHEL 8	Unaffected: 8100020240604161237.37ed7c03 < * cpe:/a:redhat:directory_server:11.9::el8
Red Hat	Red Hat Directory Server 12.4 for RHEL 9	Unaffected: 9040020240604143706.1674d574 < * cpe:/a:redhat:directory_server:12.4::el9
Red Hat	Red Hat Enterprise Linux 7	Unaffected: 0:1.3.11.1-5.el7_9 < * cpe:/o:redhat:enterprise_linux:7::server cpe:/o:redhat:enterprise_linux:7::client cpe:/o:redhat:enterprise_linux:7::workstation cpe:/o:redhat:enterprise_linux:7::computenode
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8100020240613122040.25e700aa < * cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240807050952.6dbb3803 < * cpe:/a:redhat:rhel_eus:8.8::appstream
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:2.4.5-8.el9_4 < * cpe:/a:redhat:enterprise_linux:9::crb cpe:/a:redhat:enterprise_linux:9::appstream
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	Unaffected: 0:2.2.4-9.el9_2 < * cpe:/a:redhat:rhel_eus:9.2::appstream
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-2199",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T15:52:25.507062Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:30:35.441Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T20:36:43.979Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2024:3591",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3591"
          },
          {
            "name": "RHSA-2024:3837",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3837"
          },
          {
            "name": "RHSA-2024:4092",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4092"
          },
          {
            "name": "RHSA-2024:4209",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4209"
          },
          {
            "name": "RHSA-2024:4210",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4210"
          },
          {
            "name": "RHSA-2024:4235",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4235"
          },
          {
            "name": "RHSA-2024:4633",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4633"
          },
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2024-2199"
          },
          {
            "name": "RHBZ#2267976",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267976"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://github.com/389ds/389-ds-base",
          "defaultStatus": "unaffected",
          "packageName": "389-ds-base",
          "versions": [
            {
              "lessThan": "3.1.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server_e4s:11.5::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.5 E4S for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8060020250210084424.0ca98e7e",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.8::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.8 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8090020240606122459.91529cd0",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.9::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.9 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240604161237.37ed7c03",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:12.4::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:12",
          "product": "Red Hat Directory Server 12.4 for RHEL 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "9040020240604143706.1674d574",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::server",
            "cpe:/o:redhat:enterprise_linux:7::client",
            "cpe:/o:redhat:enterprise_linux:7::workstation",
            "cpe:/o:redhat:enterprise_linux:7::computenode"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:1.3.11.1-5.el7_9",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240613122040.25e700aa",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240807050952.6dbb3803",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::crb",
            "cpe:/a:redhat:enterprise_linux:9::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.4.5-8.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:9.2::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.2.4-9.el9_2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2024-05-28T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T21:48:49.923Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:3591",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3591"
        },
        {
          "name": "RHSA-2024:3837",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3837"
        },
        {
          "name": "RHSA-2024:4092",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4092"
        },
        {
          "name": "RHSA-2024:4209",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4209"
        },
        {
          "name": "RHSA-2024:4210",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4210"
        },
        {
          "name": "RHSA-2024:4235",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4235"
        },
        {
          "name": "RHSA-2024:4633",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4633"
        },
        {
          "name": "RHSA-2024:5690",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:5690"
        },
        {
          "name": "RHSA-2025:1632",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:1632"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-2199"
        },
        {
          "name": "RHBZ#2267976",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267976"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-03-05T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-05-28T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-20: Improper Input Validation"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-2199",
    "datePublished": "2024-05-28T12:04:07.401Z",
    "dateReserved": "2024-03-05T18:54:52.210Z",
    "dateUpdated": "2025-11-06T21:48:49.923Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2024:2910-1

Vulnerability from csaf_suse

CVE-2024-3657 (GCVE-0-2024-3657)

Vulnerability from cvelistv5

CVE-2024-5953 (GCVE-0-2024-5953)

Vulnerability from cvelistv5

CVE-2024-2199 (GCVE-0-2024-2199)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature