CVE-2015-1546

Published: Feb 12, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a denial of service (crash) via a crafted search query with a matched values control.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776991

x_refsource_CONFIRM

https://support.apple.com/HT204659

x_refsource_CONFIRM

openldap-cve20151546-dos(100938)

vdb-entry

x_refsource_XF

APPLE-SA-2015-04-08-2

vendor-advisory

x_refsource_APPLE

openSUSE-SU-2015:1325

vendor-advisory

x_refsource_SUSE

MDVSA-2015:073

vendor-advisory

x_refsource_MANDRIVA

http://www.openldap.org/its/?findid=8046

x_refsource_CONFIRM

http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=2f1a2dd329b91afe561cd06b872d09630d4edb6a

x_refsource_CONFIRM

62787

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20150207 Re: CVE request: two OpenLDAP DoS issues

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-1546

Description

Affected Products

References