A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2023/Jul/47 | Mailing List |
http://seclists.org/fulldisclosure/2023/Jul/48 | Mailing List |
http://seclists.org/fulldisclosure/2023/Jul/52 | Mailing List |
https://access.redhat.com/security/cve/CVE-2023-2953 | Third Party Advisory |
https://bugs.openldap.org/show_bug.cgi?id=9904 | Issue Tracking Vendor Advisory |
https://security.netapp.com/advisory/ntap-20230703-0005/ | Third Party Advisory |
https://support.apple.com/kb/HT213843 | Third Party Advisory |
https://support.apple.com/kb/HT213844 | Third Party Advisory |
https://support.apple.com/kb/HT213845 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
History
02 Aug 2023, 16:46
Type | Values Removed | Values Added |
---|---|---|
First Time |
Netapp h300s Firmware
Netapp h410c Firmware Netapp clustered Data Ontap Netapp h300s Netapp h500s Netapp h410s Apple macos Apple Netapp ontap Tools Netapp Netapp h700s Netapp h410s Firmware Netapp h410c Netapp h700s Firmware Netapp active Iq Unified Manager Netapp h500s Firmware |
|
CPE | cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:ontap_tools:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* |
|
References | (CONFIRM) https://support.apple.com/kb/HT213844 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT213845 - Third Party Advisory | |
References | (CONFIRM) https://support.apple.com/kb/HT213843 - Third Party Advisory | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2023/Jul/48 - Mailing List | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2023/Jul/52 - Mailing List | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2023/Jul/47 - Mailing List | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230703-0005/ - Third Party Advisory |
25 Jul 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
24 Jul 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Jul 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Jun 2023, 17:17
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Openldap openldap
Redhat enterprise Linux Redhat Openldap |
|
CPE | cpe:2.3:a:openldap:openldap:2.4:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
|
References | (MISC) https://bugs.openldap.org/show_bug.cgi?id=9904 - Issue Tracking, Vendor Advisory | |
References | (MISC) https://access.redhat.com/security/cve/CVE-2023-2953 - Third Party Advisory | |
CWE | CWE-476 |
30 May 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-30 22:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-2953
Mitre link : CVE-2023-2953
CVE.ORG link : CVE-2023-2953
JSON object : View
Products Affected
netapp
- h700s
- h300s
- h300s_firmware
- ontap_tools
- h410s_firmware
- h410c_firmware
- h500s
- h410c
- clustered_data_ontap
- h700s_firmware
- active_iq_unified_manager
- h410s
- h500s_firmware
apple
- macos
redhat
- enterprise_linux
openldap
- openldap
CWE
CWE-476
NULL Pointer Dereference