A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2023/Jul/47 | Mailing List |
http://seclists.org/fulldisclosure/2023/Jul/48 | Mailing List |
http://seclists.org/fulldisclosure/2023/Jul/52 | Mailing List |
https://access.redhat.com/security/cve/CVE-2023-2953 | Third Party Advisory |
https://bugs.openldap.org/show_bug.cgi?id=9904 | Issue Tracking Vendor Advisory |
https://security.netapp.com/advisory/ntap-20230703-0005/ | Third Party Advisory |
https://support.apple.com/kb/HT213843 | Third Party Advisory |
https://support.apple.com/kb/HT213844 | Third Party Advisory |
https://support.apple.com/kb/HT213845 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
History
02 Aug 2023, 16:46
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://support.apple.com/kb/HT213843 - Third Party Advisory | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230703-0005/ - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT213844 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2023/Jul/52 - Mailing List | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2023/Jul/47 - Mailing List | |
References | (CONFIRM) https://support.apple.com/kb/HT213845 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2023/Jul/48 - Mailing List | |
First Time |
Netapp clustered Data Ontap
Apple Netapp h300s Firmware Netapp h410s Netapp h410s Firmware Netapp h500s Firmware Netapp Netapp h410c Firmware Netapp active Iq Unified Manager Netapp h700s Netapp h410c Netapp ontap Tools Netapp h700s Firmware Netapp h300s Apple macos Netapp h500s |
|
CPE | cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:ontap_tools:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* |
25 Jul 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
24 Jul 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Jul 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Jun 2023, 17:17
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:openldap:openldap:2.4:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
|
CWE | CWE-476 | |
References | (MISC) https://bugs.openldap.org/show_bug.cgi?id=9904 - Issue Tracking, Vendor Advisory | |
References | (MISC) https://access.redhat.com/security/cve/CVE-2023-2953 - Third Party Advisory | |
First Time |
Redhat enterprise Linux
Openldap Openldap openldap Redhat |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
30 May 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-30 22:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-2953
Mitre link : CVE-2023-2953
CVE.ORG link : CVE-2023-2953
JSON object : View
Products Affected
redhat
- enterprise_linux
netapp
- h300s_firmware
- ontap_tools
- h500s_firmware
- h410c
- h410s_firmware
- clustered_data_ontap
- h700s
- h700s_firmware
- h410c_firmware
- h500s
- h410s
- active_iq_unified_manager
- h300s
apple
- macos
openldap
- openldap
CWE
CWE-476
NULL Pointer Dereference