|Number of vulnerabilities||1|
|CVE ID|| CVE-2018-1054
|Vulnerable software versions||
|Vendor URL||389 Directory Server Project|
The vulnerability allows a remote attacker to cause DoS condition on the target system.
The weakness exists in the 389-ds-base package due to out-of-bounds read when handling of certain Lightweight Directory Access Protocol (LDAP) search filters. A remote attacker can send a specially crafted LDAP request, trigger memory error and cause the ns-slapd process.
Update to version 18.104.22.168.