CVE-2015-1546Double Free in Openldap

16 documents8 sources
Severity
5.0MEDIUMNVD
EPSS
10.4%
top 6.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
OpenldapDebian OpenldapApple OS X Yosemite V10.10.3 AND Security Update 2015-004+2 more
Timeline
PublishedFeb 12
Latest updateMay 14

Description

Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a denial of service (crash) via a crafted search query with a matched values control.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages6 packages

debiandebian/openldap< openldap 2.4.40-4 (bookworm)
Debianopenldap/openldap< 2.4.40-4+3
NVDopenldap/openldap2.4.40
NVDapple/mac_os_x10.10.2
NVDopensuse/opensuse13.1, 13.2+1

🔴Vulnerability Details

2
GHSA
GHSA-cmjm-2wxx-774f: Double free vulnerability in the get_vrFilter function in servers/slapd/filter2022-05-14
OSV
CVE-2015-1546: Double free vulnerability in the get_vrFilter function in servers/slapd/filter2015-02-12

💥Exploits & PoCs

2
Exploit-DB
Flash - PCRE Regex Compilation Zero-Length Assertion Arbitrary Bytecode Execution2015-08-19
Exploit-DB
Palo Alto Traps Server 3.1.2.1546 - Persistent Cross-Site Scripting2015-03-31

📋Vendor Advisories

3
Red Hat
openldap: slapd crash in valueReturnFilter cleanup2015-02-03
Debian
CVE-2015-1546: openldap - Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c...2015
Apple
CVE-2015-1546: OS X Yosemite v10.10.3 and Security Update 2015-004

💬Community

7
Bugzilla
CVE-2015-8784 libtiff: out-of-bound write in NeXTDecode()2016-01-25
Bugzilla
CVE-2015-8665 libtiff: Out-of-bounds read in tif_getimage.c2015-12-28
Bugzilla
CVE-2015-8668 libtiff: OOB read in bmp2tiff2015-12-28
Bugzilla
CVE-2015-8683 libtiff: Out-of-bounds when reading CIE Lab image format files2015-12-28
Bugzilla
CVE-2015-7554 libtiff: Invalid-write in _TIFFVGetField() when parsing some extension tags2015-12-28