GHSA-wjcg-9hh3-8323MediumCVSS 5.0

A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the...

Published
June 9, 2026
Last Modified
June 9, 2026

🔗 CVE IDs covered (1)

📋 Description

A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the start of a buffer without bounds checking, causing a heap buffer over-read in string filter parsing that may influence internal filter processing behavior.

🔗 References (5)