Red Hat Directory Server Crafted Search Pattern Denial of Service Vulnerability

Red Hat Directory Server Crafted Search Pattern Denial of Service Vulnerability

Red Hat Directory Server is prone to a denial-of-service vulnerability because the server fails to handle specially crafted search patterns.

An attacker can exploit this issue to consume CPU resources with one search request, effectively blocking additional search requests from executing. Legitimate users may be prevented from authenticating to network resources that use the affected server for authentication.

Red Hat Directory Server 7.1 and 8 are affected.