CVE-2025-14905

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: 389 Directory Server versions prior to 3.0.6~git249.6688af9b2.

Description: A heap buffer overflow vulnerability exists in the schema attr enum callback function within the schema.c file of 389 Directory Server. This occurs because the code incorrectly calculates the buffer size when processing alias strings, potentially leading to a heap overflow. A remote attacker could exploit this vulnerability to cause a Denial of Service (DoS) or achieve Remote Code Execution (RCE).

Recommendations: Upgrade to version 3.0.6~git249.6688af9b2 or later.

Fix

DoS

RCE

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

ALSA-2026:3189

ALSA-2026:3208

ALSA-2026:5513

AZL-78363

CVE-2025-14905

OPENSUSE-SU-2026:10500-1

OPENSUSE-SU-2026:20415-1

RHSA-2026:3189

RHSA-2026:3208

RHSA-2026:3504

RHSA-2026:4207

RHSA-2026:4661

RHSA-2026:4720

RHSA-2026:5196

RHSA-2026:5511

RHSA-2026:5512

RHSA-2026:5513

RHSA-2026:5514

RHSA-2026:5568

RHSA-2026:5569

RHSA-2026:5576

RHSA-2026:5597

RHSA-2026:5598

RHSA-2026:6220

RHSA-2026:6268

SUSE-SU-2026:0913-1

SUSE-SU-2026:0914-1

SUSE-SU-2026:0915-1

SUSE-SU-2026:20927-1

Affected Products

389-Ds-Base

Rocky Linux

CVE-2025-14905

Weakness Enumeration

Related Identifiers

Affected Products

References · 65