Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/389-ds-base@2.3.1%2Bdfsg1-1%2Bdeb12u1
purl pkg:deb/debian/389-ds-base@2.3.1%2Bdfsg1-1%2Bdeb12u1
Next non-vulnerable version 3.1.2+dfsg1-1
Latest non-vulnerable version 3.1.2+dfsg1-1
Risk 3.0
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-6f2q-qatg-kucr
Aliases:
CVE-2024-6237
389-ds-base: unauthenticated user can trigger a DoS by sending a specific extended search request
3.1.2+dfsg1-1
Affected by 0 other vulnerabilities.
VCID-bpw5-xeju-93f3
Aliases:
CVE-2023-1055
RHDS: LDAP browser tries to decode userPassword instead of userCertificate attribute
3.1.2+dfsg1-1
Affected by 0 other vulnerabilities.
VCID-kbvd-dfmn-buat
Aliases:
CVE-2024-1062
389-ds-base: a heap overflow leading to denail-of-servce while writing a value larger than 256 chars (in log_entry_attr)
3.1.2+dfsg1-1
Affected by 0 other vulnerabilities.
VCID-xs3r-chc9-27dr
Aliases:
CVE-2025-2487
389-ds-base: null pointer dereference leads to denial of service
3.1.2+dfsg1-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (10)
Vulnerability Summary Aliases
VCID-4tdy-umt6-4ubr 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c CVE-2024-2199
VCID-63rm-mq1r-5fbz 389-ds-base: access control bypass by query (filter in LDAP terms) optimiser CVE-2022-1949
VCID-77rw-db6h-hya9 389-ds-base: sending crafted message could result in DoS CVE-2022-0918
VCID-hjvf-3mm8-xfhq 389-ds-base: double free of the virtual attribute context in persistent search CVE-2021-4091
VCID-knxk-357y-efhh 389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed CVE-2021-3652
VCID-qkca-awn5-hfas 389-ds-base: server crash while modifying `userPassword` using malformed input (Incomplete fix for CVE-2024-2199) CVE-2024-8445
VCID-qv4g-5kzs-9kfa 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request CVE-2024-3657
VCID-rffx-mwhe-tqe5 389-ds-base: Malformed userPassword hash may cause Denial of Service CVE-2024-5953
VCID-vx15-pahy-ufbn 389-ds-base: SIGSEGV in sync_repl CVE-2022-2850
VCID-x8k9-na1n-8fgj 389-ds-base: expired password was still allowed to access the database CVE-2022-0996

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:28:00.189610+00:00 Debian Importer Affected by VCID-kbvd-dfmn-buat https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:21:46.699885+00:00 Debian Importer Affected by VCID-xs3r-chc9-27dr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:09:31.177567+00:00 Debian Importer Affected by VCID-bpw5-xeju-93f3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:45:40.884244+00:00 Debian Importer Affected by VCID-6f2q-qatg-kucr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:56:54.471568+00:00 Debian Importer Fixing VCID-63rm-mq1r-5fbz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T00:42:11.113223+00:00 Debian Oval Importer Fixing VCID-knxk-357y-efhh https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:13:52.286161+00:00 Debian Oval Importer Fixing VCID-x8k9-na1n-8fgj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:29:50.388937+00:00 Debian Oval Importer Fixing VCID-rffx-mwhe-tqe5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:44:55.206089+00:00 Debian Oval Importer Fixing VCID-77rw-db6h-hya9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:38:43.980505+00:00 Debian Oval Importer Fixing VCID-qv4g-5kzs-9kfa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:33:24.410142+00:00 Debian Oval Importer Fixing VCID-hjvf-3mm8-xfhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:14:00.704801+00:00 Debian Oval Importer Fixing VCID-qkca-awn5-hfas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:24:27.672884+00:00 Debian Oval Importer Fixing VCID-vx15-pahy-ufbn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:52:22.656970+00:00 Debian Oval Importer Fixing VCID-4tdy-umt6-4ubr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-13T08:32:03.996875+00:00 Debian Importer Affected by VCID-kbvd-dfmn-buat https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:27:32.270498+00:00 Debian Importer Affected by VCID-xs3r-chc9-27dr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:18:50.746806+00:00 Debian Importer Affected by VCID-bpw5-xeju-93f3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:30:58.416364+00:00 Debian Importer Affected by VCID-6f2q-qatg-kucr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-12T00:14:58.977297+00:00 Debian Oval Importer Fixing VCID-knxk-357y-efhh https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:47:37.597800+00:00 Debian Oval Importer Fixing VCID-x8k9-na1n-8fgj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:05:07.947517+00:00 Debian Oval Importer Fixing VCID-rffx-mwhe-tqe5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:21:27.909318+00:00 Debian Oval Importer Fixing VCID-77rw-db6h-hya9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:15:29.690822+00:00 Debian Oval Importer Fixing VCID-qv4g-5kzs-9kfa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:12:26.363336+00:00 Debian Oval Importer Fixing VCID-hjvf-3mm8-xfhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:55:48.440574+00:00 Debian Oval Importer Fixing VCID-qkca-awn5-hfas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:07:34.886944+00:00 Debian Oval Importer Fixing VCID-vx15-pahy-ufbn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:36:52.176782+00:00 Debian Oval Importer Fixing VCID-4tdy-umt6-4ubr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:00:19.209240+00:00 Debian Importer Fixing VCID-63rm-mq1r-5fbz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T23:45:57.228736+00:00 Debian Oval Importer Fixing VCID-knxk-357y-efhh https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:19:50.624754+00:00 Debian Oval Importer Fixing VCID-x8k9-na1n-8fgj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:38:54.368375+00:00 Debian Oval Importer Fixing VCID-rffx-mwhe-tqe5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:57:31.287206+00:00 Debian Oval Importer Fixing VCID-77rw-db6h-hya9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:51:48.437767+00:00 Debian Oval Importer Fixing VCID-qv4g-5kzs-9kfa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:51:23.027008+00:00 Debian Oval Importer Fixing VCID-hjvf-3mm8-xfhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:37:45.790162+00:00 Debian Oval Importer Fixing VCID-qkca-awn5-hfas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:51:47.196653+00:00 Debian Oval Importer Fixing VCID-vx15-pahy-ufbn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:21:58.539606+00:00 Debian Oval Importer Fixing VCID-4tdy-umt6-4ubr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-02T17:15:09.601201+00:00 Debian Importer Affected by VCID-kbvd-dfmn-buat https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:14:35.912180+00:00 Debian Importer Affected by VCID-xs3r-chc9-27dr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:13:52.876182+00:00 Debian Importer Affected by VCID-bpw5-xeju-93f3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:05:51.147747+00:00 Debian Importer Affected by VCID-6f2q-qatg-kucr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:03:21.227335+00:00 Debian Importer Fixing VCID-63rm-mq1r-5fbz https://security-tracker.debian.org/tracker/data/json 38.1.0