user/cyrus-sasl: CVE-2019-19906: OpenLDAP crash via malformed packet
Bugzilla ID | 257 |
Alias(es) | CVE-2019-19906 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-04-06 18:10:15 -0500 |
Modified | 2020-04-19 00:52:10 -0500 |
Status | RESOLVED FIXED |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
URL | https://nvd.nist.gov/vuln/detail/CVE-2019-19906 |
Description
cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading
to unauthenticated remote denial-of-service in OpenLDAP via a
malformed LDAP packet. The OpenLDAP crash is ultimately caused by an
off-by-one error in _sasl_add_string in common.c in cyrus-sasl.
https://github.com/cyrusimap/cyrus-sasl/commit/dcc9f51cbd4ed622cfb0f9b1c141eb2ffe3b12f1