Vulnerability-Lookup

CVE-2024-2199 (GCVE-0-2024-2199)

Vulnerability from cvelistv5 – Published: 2024-05-28 12:04 – Updated: 2026-02-25 19:31

Title

389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c

Summary

A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.

Severity

5.7 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-20 - Improper Input Validation

Assigner

redhat

References

12 references

URL	Tags
https://access.redhat.com/errata/RHSA-2024:3591	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3837	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:4092	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:4209	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:4210	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:4235	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:4633	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:5690	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:1632	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-2199	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2267976	issue-trackingx_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025…

Impacted products

11 products

Vendor	Product	Version
		Affected: 0 , < 3.1.1 (semver)
Red Hat	Red Hat Directory Server 11.5 E4S for RHEL 8	Unaffected: 8060020250210084424.0ca98e7e , < * (rpm) cpe:/a:redhat:directory_server_e4s:11.5::el8
Red Hat	Red Hat Directory Server 11.8 for RHEL 8	Unaffected: 8090020240606122459.91529cd0 , < * (rpm) cpe:/a:redhat:directory_server:11.8::el8
Red Hat	Red Hat Directory Server 11.9 for RHEL 8	Unaffected: 8100020240604161237.37ed7c03 , < * (rpm) cpe:/a:redhat:directory_server:11.9::el8
Red Hat	Red Hat Directory Server 12.4 for RHEL 9	Unaffected: 9040020240604143706.1674d574 , < * (rpm) cpe:/a:redhat:directory_server:12.4::el9
Red Hat	Red Hat Enterprise Linux 7	Unaffected: 0:1.3.11.1-5.el7_9 , < * (rpm) cpe:/o:redhat:enterprise_linux:7::server cpe:/o:redhat:enterprise_linux:7::computenode cpe:/o:redhat:enterprise_linux:7::client cpe:/o:redhat:enterprise_linux:7::workstation
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8100020240613122040.25e700aa , < * (rpm) cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240807050952.6dbb3803 , < * (rpm) cpe:/a:redhat:rhel_eus:8.8::appstream
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:2.4.5-8.el9_4 , < * (rpm) cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	Unaffected: 0:2.2.4-9.el9_2 , < * (rpm) cpe:/a:redhat:rhel_eus:9.2::appstream
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6

Date Public

2024-05-28 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-2199",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T15:52:25.507062Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:30:35.441Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T20:36:43.979Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2024:3591",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3591"
          },
          {
            "name": "RHSA-2024:3837",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3837"
          },
          {
            "name": "RHSA-2024:4092",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4092"
          },
          {
            "name": "RHSA-2024:4209",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4209"
          },
          {
            "name": "RHSA-2024:4210",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4210"
          },
          {
            "name": "RHSA-2024:4235",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4235"
          },
          {
            "name": "RHSA-2024:4633",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:4633"
          },
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2024-2199"
          },
          {
            "name": "RHBZ#2267976",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267976"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://github.com/389ds/389-ds-base",
          "defaultStatus": "unaffected",
          "packageName": "389-ds-base",
          "versions": [
            {
              "lessThan": "3.1.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server_e4s:11.5::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.5 E4S for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8060020250210084424.0ca98e7e",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.8::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.8 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8090020240606122459.91529cd0",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:11.9::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:11",
          "product": "Red Hat Directory Server 11.9 for RHEL 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240604161237.37ed7c03",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:directory_server:12.4::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "redhat-ds:12",
          "product": "Red Hat Directory Server 12.4 for RHEL 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "9040020240604143706.1674d574",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7::server",
            "cpe:/o:redhat:enterprise_linux:7::computenode",
            "cpe:/o:redhat:enterprise_linux:7::client",
            "cpe:/o:redhat:enterprise_linux:7::workstation"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:1.3.11.1-5.el7_9",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8100020240613122040.25e700aa",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds:1.4",
          "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240807050952.6dbb3803",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/a:redhat:enterprise_linux:9::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.4.5-8.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:9.2::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:2.2.4-9.el9_2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "389-ds-base",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2024-05-28T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-02-25T19:31:16.990Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:3591",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3591"
        },
        {
          "name": "RHSA-2024:3837",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3837"
        },
        {
          "name": "RHSA-2024:4092",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4092"
        },
        {
          "name": "RHSA-2024:4209",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4209"
        },
        {
          "name": "RHSA-2024:4210",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4210"
        },
        {
          "name": "RHSA-2024:4235",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4235"
        },
        {
          "name": "RHSA-2024:4633",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:4633"
        },
        {
          "name": "RHSA-2024:5690",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:5690"
        },
        {
          "name": "RHSA-2025:1632",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:1632"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-2199"
        },
        {
          "name": "RHBZ#2267976",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267976"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-03-05T00:00:00.000Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-05-28T00:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_generator": {
        "engine": "cvelib 1.8.0"
      },
      "x_redhatCweChain": "CWE-20: Improper Input Validation"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-2199",
    "datePublished": "2024-05-28T12:04:07.401Z",
    "dateReserved": "2024-03-05T18:54:52.210Z",
    "dateUpdated": "2026-02-25T19:31:16.990Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-2199",
      "date": "2026-06-05",
      "epss": "0.0009",
      "percentile": "0.25658"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-2199\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-05-28T12:15:08.950\",\"lastModified\":\"2025-11-03T21:16:09.207\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una vulnerabilidad de denegaci\u00f3n de servicio en el servidor ldap 389-ds-base. Este problema puede permitir que un usuario autenticado provoque una falla del servidor al modificar \\\"userPassword\\\" utilizando una entrada con formato incorrecto.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.1,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3591\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3837\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4092\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4209\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4210\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4235\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4633\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:5690\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:1632\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-2199\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2267976\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3591\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3837\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4092\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4209\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4210\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4235\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4633\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-2199\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2267976\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:3591\", \"name\": \"RHSA-2024:3591\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3837\", \"name\": \"RHSA-2024:3837\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4092\", \"name\": \"RHSA-2024:4092\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4209\", \"name\": \"RHSA-2024:4209\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4210\", \"name\": \"RHSA-2024:4210\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4235\", \"name\": \"RHSA-2024:4235\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4633\", \"name\": \"RHSA-2024:4633\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-2199\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2267976\", \"name\": \"RHBZ#2267976\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2025/01/msg00015.html\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T20:36:43.979Z\"}}, {\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-2199\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-28T15:52:25.507062Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-28T15:52:42.571Z\"}, \"title\": \"CISA ADP Vulnrichment\"}], \"cna\": {\"title\": \"389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.7, \"attackVector\": \"ADJACENT_NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.1.1\", \"versionType\": \"semver\"}], \"packageName\": \"389-ds-base\", \"collectionURL\": \"https://github.com/389ds/389-ds-base\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:directory_server_e4s:11.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Directory Server 11.5 E4S for RHEL 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8060020250210084424.0ca98e7e\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"redhat-ds:11\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:directory_server:11.8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Directory Server 11.8 for RHEL 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8090020240606122459.91529cd0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"redhat-ds:11\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:directory_server:11.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Directory Server 11.9 for RHEL 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8100020240604161237.37ed7c03\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"redhat-ds:11\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:directory_server:12.4::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Directory Server 12.4 for RHEL 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"9040020240604143706.1674d574\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"redhat-ds:12\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7::server\", \"cpe:/o:redhat:enterprise_linux:7::client\", \"cpe:/o:redhat:enterprise_linux:7::workstation\", \"cpe:/o:redhat:enterprise_linux:7::computenode\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.3.11.1-5.el7_9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"389-ds-base\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8100020240613122040.25e700aa\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"389-ds:1.4\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.8 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8080020240807050952.6dbb3803\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"389-ds:1.4\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\", \"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.4.5-8.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"389-ds-base\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.2 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.2.4-9.el9_2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"389-ds-base\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"389-ds-base\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-03-05T00:00:00+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-05-28T00:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-05-28T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:3591\", \"name\": \"RHSA-2024:3591\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3837\", \"name\": \"RHSA-2024:3837\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4092\", \"name\": \"RHSA-2024:4092\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4209\", \"name\": \"RHSA-2024:4209\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4210\", \"name\": \"RHSA-2024:4210\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4235\", \"name\": \"RHSA-2024:4235\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4633\", \"name\": \"RHSA-2024:4633\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5690\", \"name\": \"RHSA-2024:5690\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:1632\", \"name\": \"RHSA-2025:1632\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-2199\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2267976\", \"name\": \"RHBZ#2267976\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2025-11-06T21:48:49.923Z\"}, \"x_redhatCweChain\": \"CWE-20: Improper Input Validation\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-2199\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-06T21:48:49.923Z\", \"dateReserved\": \"2024-03-05T18:54:52.210Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-05-28T12:04:07.401Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

SUSE-SU-2024:3844-1

Vulnerability from csaf_suse - Published: 2024-10-31 08:50 - Updated: 2024-10-31 08:50

Summary

Security update for 389-ds

Severity

Important

Notes

Title of the patch: Security update for 389-ds

Description of the patch: This update for 389-ds fixes the following issues: - Persist extracted key path for ldap_ssl_client_init over repeat invocations (bsc#1230852) - Re-enable use of .dsrc basedn for dsidm commands (bsc#1231462) - Update to version 2.2.10~git18.20ce9289: * RFE: Use previously extracted key path * Update dsidm to prioritize basedn from .dsrc over interactive input * UI: Instance fails to load when DB backup directory doesn't exist * Improve online import robustness when the server is under load * Ensure all slapi_log_err calls end format strings with newline character \n * RFE: when memberof is enabled, defer updates of members from the update of the group * Provide more information in the error message during setup_ol_tls_conn() * Wrong set of entries returned for some search filters * Schema lib389 object is not keeping custom schema data upon editing * UI: Fix audit issue with npm - micromatch * Fix long delay when setting replication agreement with dsconf * Changelog trims updates from a given RID even if a consumer has not received any of them * test_password_modify_non_utf8 should set default password storage scheme * Update Cargo.lock * Rearrange includes for 32-bit support logic * Fix fedora cop RawHide builds * Bump braces from 3.0.2 to 3.0.3 in /src/cockpit/389-console * Enabling replication for a sub suffix crashes browser * d2entry - Could not open id2entry err 0 - at startup when having sub-suffixes * Slow ldif2db import on a newly created BDB backend * Audit log buffering doesn't handle large updates * RFE: improve the performance of evaluation of filter component when tested against a large valueset (like group members) * passwordHistory is not updated with a pre-hashed password * ns-slapd crash in referint_get_config * Fix the UTC offset print * Fix OpenLDAP version autodetection * RFE: add new operation note for MFA authentications * Add log buffering to audit log * Fix connection timeout error breaking errormap * Improve dsidm CLI No Such Entry handling * Improve connection timeout error logging * Add hidden -v and -j options to each CLI subcommand * Fix various issues with logconv.pl * Fix certificate lifetime displayed as NaN * Enhance Rust and JS bundling and add SPDX licenses for both * Remove audit-ci from dependencies * Fix unused variable warning from previous commit * covscan: fix memory leak in audit log when adding entries * Add a check for tagged commits * dscreate ds-root - accepts relative path * Change replica_id from str to int * Attribute Names changed to lowercase after adding the Attributes * ns-slapd crashes at startup if a backend has no suffix * During an update, if the target entry is reverted in the entry cache, the server should not retry to lock it * Reversion of the entry cache should be limited to BETXN plugin failures * Disable Transparent Huge Pages * Freelist ordering causes high wtime * Security fix for CVE-2024-2199 - VUL-0: CVE-2024-3657: 389-ds: potential denial of service via specially crafted kerberos AS-REQ request (bsc#1225512) - VUL-0: CVE-2024-5953: 389-ds: malformed userPassword hashes may cause a denial of service (bsc#1226277) - 389ds crash when user does change password using iso-8859-1 encoding (bsc#1228912)

Patchnames: SUSE-2024-3844,SUSE-SLE-Module-Server-Applications-15-SP6-2024-3844,openSUSE-SLE-15.6-2024-3844

CVE-2024-2199

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 36 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2024-3657

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 36 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-5953

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 36 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

18 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1225512	self
https://bugzilla.suse.com/1226277	self
https://bugzilla.suse.com/1228912	self
https://bugzilla.suse.com/1230852	self
https://bugzilla.suse.com/1231462	self
https://www.suse.com/security/cve/CVE-2024-2199/	self
https://www.suse.com/security/cve/CVE-2024-3657/	self
https://www.suse.com/security/cve/CVE-2024-5953/	self
https://www.suse.com/security/cve/CVE-2024-2199	external
https://bugzilla.suse.com/1225507	external
https://www.suse.com/security/cve/CVE-2024-3657	external
https://bugzilla.suse.com/1225512	external
https://www.suse.com/security/cve/CVE-2024-5953	external
https://bugzilla.suse.com/1226277	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for 389-ds",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for 389-ds fixes the following issues:\n\n- Persist extracted key path for ldap_ssl_client_init over repeat invocations (bsc#1230852)\n- Re-enable use of .dsrc basedn for dsidm commands (bsc#1231462)\n- Update to version 2.2.10~git18.20ce9289:\n  * RFE: Use previously extracted key path\n  * Update dsidm to prioritize basedn from .dsrc over interactive input\n  * UI: Instance fails to load when DB backup directory doesn\u0027t exist\n  * Improve online import robustness when the server is under load\n  * Ensure all slapi_log_err calls end format strings with newline character \\n\n  * RFE: when memberof is enabled, defer updates of members from the update of the group\n  * Provide more information in the error message during setup_ol_tls_conn()\n  * Wrong set of entries returned for some search filters\n  * Schema lib389 object is not keeping custom schema data upon editing\n  * UI: Fix audit issue with npm - micromatch\n  * Fix long delay when setting replication agreement with dsconf\n  * Changelog trims updates from a given RID even if a consumer has not received any of them\n  * test_password_modify_non_utf8 should set default password storage scheme\n  * Update Cargo.lock\n  * Rearrange includes for 32-bit support logic\n  * Fix fedora cop RawHide builds\n  * Bump braces from 3.0.2 to 3.0.3 in /src/cockpit/389-console\n  * Enabling replication for a sub suffix crashes browser\n  * d2entry - Could not open id2entry err 0 - at startup when having sub-suffixes\n  * Slow ldif2db import on a newly created BDB backend\n  * Audit log buffering doesn\u0027t handle large updates\n  * RFE: improve the performance of evaluation of filter component when tested against a large valueset (like group members)\n  * passwordHistory is not updated with a pre-hashed password\n  * ns-slapd crash in referint_get_config\n  * Fix the UTC offset print\n  * Fix OpenLDAP version autodetection\n  * RFE: add new operation note for MFA authentications\n  * Add log buffering to audit log\n  * Fix connection timeout error breaking errormap\n  * Improve dsidm CLI No Such Entry handling\n  * Improve connection timeout error logging\n  * Add hidden -v and -j options to each CLI subcommand\n  * Fix various issues with logconv.pl\n  * Fix certificate lifetime displayed as NaN\n  * Enhance Rust and JS bundling and add SPDX licenses for both\n  * Remove audit-ci from dependencies\n  * Fix unused variable warning from previous commit\n  * covscan: fix memory leak in audit log when adding entries\n  * Add a check for tagged commits\n  * dscreate ds-root - accepts relative path\n  * Change replica_id from str to int\n  * Attribute Names changed to lowercase after adding the Attributes\n  * ns-slapd crashes at startup if a backend has no suffix\n  * During an update, if the target entry is reverted in the entry cache, the server should not retry to lock it\n  * Reversion of the entry cache should be limited to BETXN plugin failures\n  * Disable Transparent Huge Pages\n  * Freelist ordering causes high wtime\n  * Security fix for CVE-2024-2199\n- VUL-0: CVE-2024-3657: 389-ds: potential denial of service via specially crafted kerberos AS-REQ request (bsc#1225512)\n- VUL-0: CVE-2024-5953: 389-ds: malformed userPassword hashes may cause a denial of service (bsc#1226277)\n- 389ds crash when user does change password using iso-8859-1 encoding (bsc#1228912)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2024-3844,SUSE-SLE-Module-Server-Applications-15-SP6-2024-3844,openSUSE-SLE-15.6-2024-3844",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3844-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2024:3844-1",
        "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243844-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2024:3844-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019745.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225512",
        "url": "https://bugzilla.suse.com/1225512"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226277",
        "url": "https://bugzilla.suse.com/1226277"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228912",
        "url": "https://bugzilla.suse.com/1228912"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230852",
        "url": "https://bugzilla.suse.com/1230852"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231462",
        "url": "https://bugzilla.suse.com/1231462"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-2199 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-2199/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-3657 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-3657/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-5953 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-5953/"
      }
    ],
    "title": "Security update for 389-ds",
    "tracking": {
      "current_release_date": "2024-10-31T08:50:21Z",
      "generator": {
        "date": "2024-10-31T08:50:21Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2024:3844-1",
      "initial_release_date": "2024-10-31T08:50:21Z",
      "revision_history": [
        {
          "date": "2024-10-31T08:50:21Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                "product": {
                  "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                  "product_id": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                "product": {
                  "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                  "product_id": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                  "product_id": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                "product": {
                  "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                  "product_id": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                "product": {
                  "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
                  "product_id": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                "product": {
                  "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                  "product_id": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                "product": {
                  "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                  "product_id": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                  "product_id": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                "product": {
                  "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                  "product_id": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                "product": {
                  "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
                  "product_id": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                "product": {
                  "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                  "product_id": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                "product": {
                  "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                  "product_id": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                  "product_id": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                "product": {
                  "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                  "product_id": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                "product": {
                  "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
                  "product_id": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                "product": {
                  "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                  "product_id": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                "product": {
                  "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                  "product_id": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                "product": {
                  "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                  "product_id": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                "product": {
                  "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                  "product_id": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                "product": {
                  "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
                  "product_id": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
                  "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-server-applications:15:sp6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.6",
                "product": {
                  "name": "openSUSE Leap 15.6",
                  "product_id": "openSUSE Leap 15.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64 as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        },
        "product_reference": "libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-2199",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-2199"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A denial of service vulnerability was found in 389-ds-base ldap server. This issue may allow an authenticated user to cause a server crash while modifying `userPassword` using malformed input.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-2199",
          "url": "https://www.suse.com/security/cve/CVE-2024-2199"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225507 for CVE-2024-2199",
          "url": "https://bugzilla.suse.com/1225507"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-10-31T08:50:21Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-2199"
    },
    {
      "cve": "CVE-2024-3657",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-3657"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in 389-ds-base. A specially-crafted LDAP query can potentially cause a failure on the directory server, leading to a denial of service",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-3657",
          "url": "https://www.suse.com/security/cve/CVE-2024-3657"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225512 for CVE-2024-3657",
          "url": "https://bugzilla.suse.com/1225512"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-10-31T08:50:21Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-3657"
    },
    {
      "cve": "CVE-2024-5953",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-5953"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
          "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-5953",
          "url": "https://www.suse.com/security/cve/CVE-2024-5953"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226277 for CVE-2024-5953",
          "url": "https://bugzilla.suse.com/1226277"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-devel-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:389-ds-snmp-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:lib389-2.2.10~git18.20ce9289-150600.8.10.1.x86_64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.aarch64",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.ppc64le",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.s390x",
            "openSUSE Leap 15.6:libsvrcore0-2.2.10~git18.20ce9289-150600.8.10.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-10-31T08:50:21Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-5953"
    }
  ]
}

WID-SEC-W-2024-1290

Vulnerability from csaf_certbund - Published: 2024-06-04 22:00 - Updated: 2025-12-16 23:00

Summary

Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution. Red Hat Directory Server ist ein Open-Source LDAP-Server.

Angriff: Ein entfernter Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux und Red Hat Directory Server ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen.

Betroffene Betriebssysteme: - Linux

CVE-2024-2199

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat Enterprise Linux 8 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:8`	8
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Directory Server 12 Red Hat / Directory Server	`cpe:/a:redhat:directory_server:12`	12
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat Directory Server 11 Red Hat / Directory Server	`cpe:/a:redhat:directory_server:11`	11

CVE-2024-3657

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat Enterprise Linux 8 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:8`	8
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Directory Server 12 Red Hat / Directory Server	`cpe:/a:redhat:directory_server:12`	12
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Red Hat Directory Server 11 Red Hat / Directory Server	`cpe:/a:redhat:directory_server:11`	11

References

25 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2024:3591	external
https://oss.oracle.com/pipermail/el-errata/2024-J…	external
https://oss.oracle.com/pipermail/el-errata/2024-J…	external
https://access.redhat.com/errata/RHSA-2024:3837	external
https://linux.oracle.com/errata/ELSA-2024-3837.html	external
https://errata.build.resf.org/RLSA-2024:3837	external
https://access.redhat.com/errata/RHSA-2024:4092	external
https://access.redhat.com/errata/RHSA-2024:4210	external
https://access.redhat.com/errata/RHSA-2024:4209	external
https://access.redhat.com/errata/RHSA-2024:4235	external
https://linux.oracle.com/errata/ELSA-2024-4235.html	external
https://errata.build.resf.org/RLSA-2024:4235	external
https://access.redhat.com/errata/RHSA-2024:4633	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://access.redhat.com/errata/RHSA-2024:5690	external
https://access.redhat.com/errata/RHSA-2024:6576	external
https://access.redhat.com/errata/RHSA-2024:7434	external
https://access.redhat.com/errata/RHSA-2024:7458	external
https://access.redhat.com/errata/RHSA-2025:1632	external
https://alas.aws.amazon.com/AL2/ALAS-2025-2798.html	external
https://lwn.net/Articles/978388/	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.\r\nRed Hat Directory Server ist ein Open-Source LDAP-Server.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux und Red Hat Directory Server ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1290 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1290.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1290 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1290"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory vom 2024-06-04",
        "url": "https://access.redhat.com/errata/RHSA-2024:3591"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-3591 vom 2024-06-05",
        "url": "https://oss.oracle.com/pipermail/el-errata/2024-June/015799.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-3591 vom 2024-06-05",
        "url": "https://oss.oracle.com/pipermail/el-errata/2024-June/015798.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3837 vom 2024-06-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:3837"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-3837 vom 2024-06-12",
        "url": "https://linux.oracle.com/errata/ELSA-2024-3837.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:3837 vom 2024-06-14",
        "url": "https://errata.build.resf.org/RLSA-2024:3837"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4092 vom 2024-06-25",
        "url": "https://access.redhat.com/errata/RHSA-2024:4092"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4210 vom 2024-07-02",
        "url": "https://access.redhat.com/errata/RHSA-2024:4210"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4209 vom 2024-07-02",
        "url": "https://access.redhat.com/errata/RHSA-2024:4209"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4235 vom 2024-07-03",
        "url": "https://access.redhat.com/errata/RHSA-2024:4235"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-4235 vom 2024-07-03",
        "url": "https://linux.oracle.com/errata/ELSA-2024-4235.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:4235 vom 2024-07-15",
        "url": "https://errata.build.resf.org/RLSA-2024:4235"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4633 vom 2024-07-18",
        "url": "https://access.redhat.com/errata/RHSA-2024:4633"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-48C0A7FA73 vom 2024-07-30",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-48c0a7fa73"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-AC07913BE8 vom 2024-07-30",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ac07913be8"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-C8290315DF vom 2024-07-30",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-c8290315df"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5690 vom 2024-08-21",
        "url": "https://access.redhat.com/errata/RHSA-2024:5690"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6576 vom 2024-09-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:6576"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7434 vom 2024-10-01",
        "url": "https://access.redhat.com/errata/RHSA-2024:7434"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7458 vom 2024-10-01",
        "url": "https://access.redhat.com/errata/RHSA-2024:7458"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:1632 vom 2025-02-18",
        "url": "https://access.redhat.com/errata/RHSA-2025:1632"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-2798 vom 2025-03-25",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2025-2798.html"
      },
      {
        "category": "external",
        "summary": "CentOS Security Advisory CESA-2024:3591 vom 2025-12-17",
        "url": "https://lwn.net/Articles/978388/"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Enterprise Linux: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
    "tracking": {
      "current_release_date": "2025-12-16T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-17T10:16:00.774+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2024-1290",
      "initial_release_date": "2024-06-04T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-06-04T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-06-11T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-12T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-06-16T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2024-06-25T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-01T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-02T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-03T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-07-15T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2024-07-18T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-30T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-08-21T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-10T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-30T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-10-01T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-02-17T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-03-25T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-12-16T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von CentOS aufgenommen"
        }
      ],
      "status": "final",
      "version": "18"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source CentOS",
            "product": {
              "name": "Open Source CentOS",
              "product_id": "1727",
              "product_identification_helper": {
                "cpe": "cpe:/o:centos:centos:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "12",
                "product": {
                  "name": "Red Hat Directory Server 12",
                  "product_id": "T035188",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:directory_server:12"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "11",
                "product": {
                  "name": "Red Hat Directory Server 11",
                  "product_id": "T035189",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:directory_server:11"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7",
                "product": {
                  "name": "Red Hat Enterprise Linux 7",
                  "product_id": "T035190",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:directory_server:7"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Directory Server"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "8",
                "product": {
                  "name": "Red Hat Enterprise Linux 8",
                  "product_id": "T035191",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9",
                "product": {
                  "name": "Red Hat Enterprise Linux 9",
                  "product_id": "T035192",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-2199",
      "product_status": {
        "known_affected": [
          "T035191",
          "67646",
          "T035192",
          "T035188",
          "398363",
          "1727",
          "T004914",
          "T032255",
          "74185",
          "T035189"
        ]
      },
      "release_date": "2024-06-04T22:00:00.000+00:00",
      "title": "CVE-2024-2199"
    },
    {
      "cve": "CVE-2024-3657",
      "product_status": {
        "known_affected": [
          "T035191",
          "67646",
          "T035192",
          "T035188",
          "398363",
          "1727",
          "T004914",
          "T032255",
          "74185",
          "T035189"
        ]
      },
      "release_date": "2024-06-04T22:00:00.000+00:00",
      "title": "CVE-2024-3657"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-2199 (GCVE-0-2024-2199)

SUSE-SU-2024:3844-1

WID-SEC-W-2024-1290

Tags

Sightings

Nomenclature