Back to search
CVE-2015-1827
Published: Mar 30, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The get_user_grouplist function in the extdom plug-in in FreeIPA before 4.1.4 does not properly reallocate memory when processing user accounts, which allows remote attackers to cause a denial of service (crash) via a group list request for a user that belongs to a large number of groups.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1205200
x_refsource_CONFIRM
FEDORA-2015-4747
vendor-advisory
x_refsource_FEDORA
https://fedorahosted.org/freeipa/ticket/4908
x_refsource_CONFIRM
73376
vdb-entry
x_refsource_BID
FEDORA-2015-4788
vendor-advisory
x_refsource_FEDORA
RHSA-2015:0728
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now