Sumit Bose

**Name of the Vulnerable Software and Affected Versions** slapi-nis plug-in versions prior to 0.54.2 **Description** The issue allows remote attackers to cause a denial of service, resulting in an infinite loop and CPU consumption. This can be achieved by requesting a group with a large number of members or a user that belongs to a large number of groups. **Recommendations** For slapi-nis plug-in versions prior to 0.54.2, update to version 0.54.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** FreeIPA versions prior to 3.2.0 **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a connection request without a username or dn. This is related to the 389 directory server. **Recommendations** For versions prior to 3.2.0, update to version 3.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the ipapwd chpwop function in the directory server until a patch is available.