Bug 912964 - (CVE-2013-0312) CVE-2013-0312 389-ds: unauthenticated denial of service vulnerability in handling of LDAPv3 control data
CVE-2013-0312 389-ds: unauthenticated denial of service vulnerability in hand...
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Red Hat Product Security
: Security
Depends On: 913228 913229 920325 920326
Blocks: 912966
  Show dependency treegraph
Reported: 2013-02-19 23:56 EST by Vincent Danen
Modified: 2015-02-05 07:20 EST (History)
7 users (show)

See Also:
Fixed In Version: 389-ds-base
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2013-03-11 17:06:07 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
revised git patch file (389-ds-base-1.2.11) (11.85 KB, patch)
2013-02-22 17:44 EST, Noriko Hosoi
rmeggins: review+
Details | Diff

  None (edit)
Description Vincent Danen 2013-02-19 23:56:51 EST
It was discovered that an anonymous (or bound) LDAP request to the 389 Directory Server could trigger a crash of the server when handling LDAP V3 control data.  If a malicious unauthenticated user were to send an LDAP request containing crafted LDAPv3 control data, they could cause the server to crash, denying service to the directory.
Comment 3 Vincent Danen 2013-02-20 12:01:56 EST

This issue was discovered by Thierry Bordaz of Red Hat.
Comment 8 Noriko Hosoi 2013-02-22 17:44:39 EST
Created attachment 701393 [details]
revised git patch file (389-ds-base-1.2.11)

Thanks to Rich for his comments.  I modified the previous patch, which keeps the original order.
Comment 10 errata-xmlrpc 2013-03-11 14:38:54 EDT
This issue has been addressed in following products:

  Red Hat Enterprise Linux 6

Via RHSA-2013:0628 https://rhn.redhat.com/errata/RHSA-2013-0628.html
Comment 11 Vincent Danen 2013-03-11 16:14:39 EDT
This was fixed upstream here:

Comment 12 Vincent Danen 2013-03-11 16:15:59 EDT
Created 389-ds-base tracking bugs for this issue

Affects: epel-5 [bug 920325]
Affects: fedora-all [bug 920326]

Note You need to log in before you can comment on or make changes to this bug.