FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 16:00:18 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
38c76fcf-1744-11da-978e-0001020eed82pam_ldap -- authentication bypass vulnerability

Luke Howard reports:

If a pam_ldap client authenticates against an LDAP server that returns a passwordPolicyResponse control, but omits the optional "error" field of the PasswordPolicyResponseValue, then the LDAP authentication result will be ignored and the authentication step will always succeed.


Discovery 2005-08-22
Entry 2005-08-27
pam_ldap
< 1.8.0

CVE-2005-2641
778916
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=166163