Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 907933 (CVE-2023-2953)

Summary: <net-nds/openldap-{2.5.14,2.6.4-r1}: null pointer dereference
Product: Gentoo Security Reporter: John Helmert III <ajak>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: IN_PROGRESS ---    
Severity: minor CC: ldap-bugs
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://bugs.openldap.org/show_bug.cgi?id=9904
Whiteboard: B3 [glsa? cleanup]
Package list:
Runtime testing required: ---
Bug Depends on: 908276    
Bug Blocks:    

Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2023-06-06 04:25:26 UTC 
CVE-2023-2953:

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

Please stabilize 2.6.4-r1 and cleanup <2.5.14.