CVE-2021-4091

Published: Feb 18, 2022

Modified: Nov 3, 2025

PUBLISHED

Description

A double-free was found in the way 389-ds-base handles virtual attributes context in persistent searches. An attacker could send a series of search requests, forcing the server to behave unexpectedly, and crash.

Vendor	Product	Versions
n/a	389-ds-base	affected `389-ds-base-1.3.10.2`

Weaknesses (CWE)

CWE-415

References

https://bugzilla.redhat.com/show_bug.cgi?id=2030307

[debian-lts-announce] 20230424 [SECURITY] [DLA 3399-1] 389-ds-base security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-4091

Description

Affected Products

Weaknesses (CWE)

References