Ubuntu CVE Tracker

seems CVE-2023-2953 is not fixed in openldap 2.4.49+dfsg-2ubuntu1.9

Bug #2046195 reported by Dr. Tobias Damm on 2023-12-11

260

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Ubuntu CVE Tracker	Confirmed	Undecided	Unassigned

Bug Description

Hi,

this CVE-2023-2953

https://nvd.nist.gov/vuln/detail/CVE-2023-2953

seems to be not included in the provided patched of openldap 2.4.49+dfsg-2ubuntu1.9.

This seems to be the latest update: https://launchpad.net/ubuntu/+source/openldap/2.4.49+dfsg-2ubuntu1.9

Tobias

Tags:

CVE References

2023-2953

Seth Arnold (seth-arnold) on 2023-12-14

information type:

Private Security → Public Security

Revision history for this message

Seth Arnold (seth-arnold) wrote on 2023-12-14:

Hello Tobias, thanks for writing.

We've prioritized CVE-2023-2953 as "low", which means we'll include this if there is a future update to fix something more important, but won't make an update specifically for this issue.

Thanks

Changed in ubuntu-cve-tracker:
status:	New → Confirmed

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.