Debian Slapi-Nis vulnerabilities

CVE-2021-3480 [HIGH] CVE-2021-3480: slapi-nis - A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer derefere... A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer dereference during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The highest threat from this vulnerability is to system availability. Scope: local bookworm: resolved (fixed in 0.56.5-2) bullseye: resolved (fixed in 0.56.5-2) sid

CVE-2015-0283 [HIGH] CVE-2015-0283: slapi-nis - The slapi-nis plug-in before 0.54.2 does not properly reallocate memory when pro... The slapi-nis plug-in before 0.54.2 does not properly reallocate memory when processing user accounts, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a request for a (1) group with a large number of members or (2) user that belongs to a large number of groups. Scope: local bookworm: resolved (fixed in 0.54.2-1) bul