CVE-2026-11792

Name of the Vulnerable Software and Affected Versions 389 Directory Server (affected versions not specified)

Description A heap buffer overflow occurs when audit logging is enabled. The create masked entry string() function in auditlog.c copies a fixed-length password mask into a heap buffer without verifying the available space. If a short cleartext password is logged, which requires non-default CLEAR password storage or a compromised replication peer, the copy operation overflows the buffer, leading to heap memory corruption and corrupted audit log output.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.