CVE-2014-8182

Summary

An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.

Affected Software

VendorProductVersion RangeStatus
openldapopenldap2.4affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References