VDB

GCVE-110-MAGEIA-2022-134

GCVE-110-MAGEIA-2022-134
Advisory Published
Vulnetix · Advisory published April 9, 2022
A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication is required. The message triggers a segmentation fault that results in slapd crashing. (CVE-2022-0918) A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authentication. (CVE-2022-0996)

Affected Products

VendorProductVersionsPlatforms
Mageia389-ds-base0 (affected), 1.4.0.26-8.4.mga8 (unaffected), 0 (affected), 1.4.0.26-8.4.mga8 (unaffected)
Mageialibalsa21.2.6.1-1.mga8 (unaffected), 0 (affected)
Mageiaalsa-sof-firmware0 (affected), 2.1.1-1.mga8.nonfree (unaffected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›