rpm package
suse/389-ds&distro=SUSE Linux Enterprise Real Time 15 SP2
pkg:rpm/suse/389-ds&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-0996 | — | < 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1 | 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1 | Mar 23, 2022 | A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication. | ||
| CVE-2022-0918 | — | < 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1 | 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1 | Mar 16, 2022 | A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication |
- CVE-2022-0996Mar 23, 2022affected < 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1fixed 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication.
- CVE-2022-0918Mar 16, 2022affected < 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1fixed 1.4.3.29~git18.3fcd3b1bd-150200.3.24.1
A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication