CVE-2015-6908

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
openldapopenldap
𝑥
≤ 2.4.42
applemac_os_x
𝑥
≤ 10.11.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
openldap
bookworm
2.5.13+dfsg-5
fixed
bullseye
2.4.57+dfsg-3+deb11u1
fixed
bullseye (security)
2.4.57+dfsg-3+deb11u1
fixed
sid
2.5.18+dfsg-3
fixed
trixie
2.5.18+dfsg-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
openldap
precise
Fixed 2.4.28-1.1ubuntu4.6
released
trusty
Fixed 2.4.31-1+nmu2ubuntu8.2
released
vivid
Fixed 2.4.31-1+nmu2ubuntu12.3
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libldap-2_4-2
suse enterprise desktop 15
2.4.46-7.10
fixed
suse enterprise desktop 15 SP1
2.4.46-9.3.1
fixed
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise desktop 15 SP3
2.4.46-9.51.1
fixed
suse enterprise desktop 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise desktop 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise desktop 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise desktop 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise sap 12 SP1
2.4.41-18.13.1
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise sap 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise sap 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise sap 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise server 12
2.4.41-18.13.1
fixed
suse enterprise server 12 SP1
2.4.41-18.13.1
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise server 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise server 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP7
2.4.46-150600.23.21
fixed
libldap-2_4-2-32bit
suse enterprise desktop 15
2.4.46-7.10
fixed
suse enterprise desktop 15 SP1
2.4.46-9.3.1
fixed
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise desktop 15 SP3
2.4.46-9.51.1
fixed
suse enterprise desktop 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise desktop 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise desktop 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise desktop 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise sap 12 SP1
2.4.41-18.13.1
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise sap 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise sap 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise sap 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise server 12
2.4.41-18.13.1
fixed
suse enterprise server 12 SP1
2.4.41-18.13.1
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise server 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise server 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP7
2.4.46-150600.23.21
fixed
libldap-data
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise desktop 15 SP3
2.4.46-9.51.1
fixed
suse enterprise desktop 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise desktop 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise desktop 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise desktop 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise sap 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise sap 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise sap 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise server 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise server 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP7
2.4.46-150600.23.21
fixed
openldap2
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 12 SP1
2.4.41-18.13.4
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 12
2.4.41-18.13.4
fixed
suse enterprise server 12 SP1
2.4.41-18.13.4
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
openldap2-back-meta
suse enterprise sap 12 SP1
2.4.41-18.13.4
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 12
2.4.41-18.13.4
fixed
suse enterprise server 12 SP1
2.4.41-18.13.4
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
openldap2-back-perl
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
openldap2-client
suse enterprise desktop 15
2.4.46-7.10
fixed
suse enterprise desktop 15 SP1
2.4.46-9.3.1
fixed
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise desktop 15 SP3
2.4.46-9.51.1
fixed
suse enterprise desktop 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise desktop 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise desktop 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise desktop 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise sap 12 SP1
2.4.41-18.13.1
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise sap 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise sap 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise sap 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise server 12
2.4.41-18.13.1
fixed
suse enterprise server 12 SP1
2.4.41-18.13.1
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise server 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise server 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP7
2.4.46-150600.23.21
fixed
openldap2-devel
suse enterprise desktop 15
2.4.46-7.10
fixed
suse enterprise desktop 15 SP1
2.4.46-9.3.1
fixed
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise desktop 15 SP3
2.4.46-9.51.1
fixed
suse enterprise desktop 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise desktop 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise desktop 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise desktop 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise sap 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise sap 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise sap 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise server 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise server 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP7
2.4.46-150600.23.21
fixed
openldap2-devel-static
suse enterprise desktop 15
2.4.46-7.10
fixed
suse enterprise desktop 15 SP1
2.4.46-9.3.1
fixed
suse enterprise desktop 15 SP2
2.4.46-9.28.2
fixed
suse enterprise desktop 15 SP3
2.4.46-9.51.1
fixed
suse enterprise desktop 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise desktop 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise desktop 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise desktop 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise sap 15
2.4.46-7.10
fixed
suse enterprise sap 15 SP1
2.4.46-9.3.1
fixed
suse enterprise sap 15 SP2
2.4.46-9.28.2
fixed
suse enterprise sap 15 SP3
2.4.46-9.51.1
fixed
suse enterprise sap 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise sap 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise sap 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise sap 15 SP7
2.4.46-150600.23.21
fixed
suse enterprise server 15
2.4.46-7.10
fixed
suse enterprise server 15 SP1
2.4.46-9.3.1
fixed
suse enterprise server 15 SP2
2.4.46-9.28.2
fixed
suse enterprise server 15 SP3
2.4.46-9.51.1
fixed
suse enterprise server 15 SP4
2.4.46-150200.14.5.1
fixed
suse enterprise server 15 SP5
2.4.46-150200.14.11.2
fixed
suse enterprise server 15 SP6
2.4.46-150600.23.21
fixed
suse enterprise server 15 SP7
2.4.46-150600.23.21
fixed
openldap2-ppolicy-check-password
suse enterprise desktop 15 SP2
1.2-9.28.2
fixed
suse enterprise sap 15 SP2
1.2-9.28.2
fixed
suse enterprise sap 15 SP3
1.2-9.51.1
fixed
suse enterprise server 15 SP2
1.2-9.28.2
fixed
suse enterprise server 15 SP3
1.2-9.51.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
openldap
RHEL 6
0:2.4.40-6.el6_7
fixed
RHEL 7
0:2.4.39-7.el7_1
fixed
openldap-clients
RHEL 6
0:2.4.40-6.el6_7
fixed
RHEL 7
0:2.4.39-7.el7_1
fixed
openldap-devel
RHEL 6
0:2.4.40-6.el6_7
fixed
RHEL 7
0:2.4.39-7.el7_1
fixed
openldap-servers
RHEL 6
0:2.4.40-6.el6_7
fixed
RHEL 7
0:2.4.39-7.el7_1
fixed
openldap-servers-sql
RHEL 6
0:2.4.40-6.el6_7
fixed
RHEL 7
0:2.4.39-7.el7_1
fixed
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00037.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00039.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00040.html
http://rhn.redhat.com/errata/RHSA-2015-1840.html
http://www.debian.org/security/2015/dsa-3356
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=6fe51a9ab04fd28bbc171da3cf12f1c1040d6629
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=8240
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.security-assessment.com/files/documents/advisory/OpenLDAP-ber_get_next-Denial-of-Service.pdf
http://www.securityfocus.com/bid/76714
http://www.securitytracker.com/id/1033534
http://www.ubuntu.com/usn/USN-2742-1
https://support.apple.com/HT205637
http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00031.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00037.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00039.html
http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00040.html
http://rhn.redhat.com/errata/RHSA-2015-1840.html
http://www.debian.org/security/2015/dsa-3356
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commit%3Bh=6fe51a9ab04fd28bbc171da3cf12f1c1040d6629
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=8240
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.security-assessment.com/files/documents/advisory/OpenLDAP-ber_get_next-Denial-of-Service.pdf
http://www.securityfocus.com/bid/76714
http://www.securitytracker.com/id/1033534
http://www.ubuntu.com/usn/USN-2742-1
https://support.apple.com/HT205637