Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-u5q1-nkup-f7ga

Summary slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of service (infinite loop and connection blocking) by leveraging an abnormally closed connection.

Aliases

alias	CVE-2016-0741

Fixed_packages

url	pkg:deb/debian/389-ds-base@1.3.4.8-1?distro=trixie
purl	pkg:deb/debian/389-ds-base@1.3.4.8-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.3.4.8-1%3Fdistro=trixie

url pkg:deb/debian/389-ds-base@1.4.4.11-2?distro=trixie

purl pkg:deb/debian/389-ds-base@1.4.4.11-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5mdk-bqm7-mkeu

vulnerability	VCID-7dna-4mcn-jqd5

vulnerability	VCID-ft29-jr9j-jbbm

vulnerability	VCID-k27f-tsq5-73fn

vulnerability	VCID-ud9m-jz3k-bfhm

vulnerability	VCID-vadc-mdbp-q3g9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@1.4.4.11-2%3Fdistro=trixie

url pkg:deb/debian/389-ds-base@2.3.1%2Bdfsg1-1%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/389-ds-base@2.3.1%2Bdfsg1-1%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5mdk-bqm7-mkeu

vulnerability	VCID-7dna-4mcn-jqd5

vulnerability	VCID-ft29-jr9j-jbbm

vulnerability	VCID-k27f-tsq5-73fn

vulnerability	VCID-ud9m-jz3k-bfhm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@2.3.1%252Bdfsg1-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/389-ds-base@3.1.2%2Bdfsg1-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/389-ds-base@3.1.2%2Bdfsg1-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@3.1.2%252Bdfsg1-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/389-ds-base@3.1.2%2Bvendor1-2?distro=trixie
purl	pkg:deb/debian/389-ds-base@3.1.2%2Bvendor1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/389-ds-base@3.1.2%252Bvendor1-2%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/389-ds-base@1.3.4.0-26?arch=el7_2

purl pkg:rpm/redhat/389-ds-base@1.3.4.0-26?arch=el7_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-u5q1-nkup-f7ga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/389-ds-base@1.3.4.0-26%3Farch=el7_2

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0741.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0741.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0741

reference_id

reference_type

scores

value	0.0402
scoring_system	epss
scoring_elements	0.88667
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0741

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1299416
reference_id	1299416
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1299416

reference_url	https://access.redhat.com/errata/RHSA-2016:0204
reference_id	RHSA-2016:0204
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0204

Weaknesses

cwe_id	772
name	Missing Release of Resource after Effective Lifetime
description	The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

cwe_id	835
name	Loop with Unreachable Exit Condition ('Infinite Loop')
description	The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u5q1-nkup-f7ga

Vulnerability Instance