Vulnerability CVE-2017-15135

Vulnerability Name:

CVE-2017-15135 (CCN-138243)

Assigned:

2017-10-08

Published:

2017-10-08

Updated:

2023-02-12

Summary:

It was found that 389-ds-base since 1.3.6.1 up to and including 1.4.0.3 did not always handle internal hash comparison operations correctly during the authentication process. A remote, unauthenticated attacker could potentially use this flaw to bypass the authentication process under very rare and specific circumstances.

CVSS v3 Severity:

8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
4.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

4.6 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L)
4.1 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L/E:U/RL:U/RC:R)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-287

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2017-15135

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: BID-102811
Red Hat '389-ds-base' CVE-2017-15135 Authentication Bypass Vulnerability

Source: secalert@redhat.com
Type: Third Party Advisory, VDB Entry
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: Red Hat Bugzilla Bug 1525628
(CVE-2017-15135) CVE-2017-15135 389-ds-base: Authentication bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c

Source: secalert@redhat.com
Type: Issue Tracking, Patch, Third Party Advisory
secalert@redhat.com

Source: XF
Type: UNKNOWN
389dsbase-cve201715135-sec-bypass(138243)

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2017-15135

Vulnerable Configuration:

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201715135	V	CVE-2017-15135	2022-09-02
oval:org.opensuse.security:def:3431	P	apache2-mod_apparmor-2.8.2-51.18.3 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3462	P	ctags-5.8-7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3178	P	libgnomesu-2.0.0-353.6.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3166	P	libdmx1-1.1.3-3.51 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3443	P	bash-4.3-83.23.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95092	P	389-ds-2.0.15~git17.498ec3e93-150400.1.3 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:4171	P	Security update for wireshark (Moderate)	2021-12-06
oval:org.opensuse.security:def:68587	P	Security update for netcdf (Important)	2021-12-02
oval:org.opensuse.security:def:4167	P	Security update for webkit2gtk3 (Important)	2021-11-03
oval:org.opensuse.security:def:65253	P	Security update for fetchmail (Moderate)	2021-10-20
oval:org.opensuse.security:def:4164	P	Security update for fetchmail (Moderate)	2021-10-20
oval:org.opensuse.security:def:94190	P	(Important)	2021-10-20
oval:org.opensuse.security:def:4157	P	Security update for ffmpeg (Moderate)	2021-10-06
oval:org.opensuse.security:def:49451	P	Security update for php74-pear (Important)	2021-09-09
oval:org.opensuse.security:def:51650	P	Security update for bind (Moderate)	2021-08-30
oval:org.opensuse.security:def:63313	P	389-ds-1.4.4.14~git0.37dc95673-1.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2224	P	389-ds-1.4.4.14~git0.37dc95673-1.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:100903	P	libcroco-0.6.13-1.26 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71927	P	liboath-devel-2.6.2-1.15 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72043	P	python3-cryptography-2.8-3.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:51611	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:66859	P	Security update for sqlite3 (Important)	2021-07-14
oval:org.opensuse.security:def:51916	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:51589	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:4134	P	Security update for djvulibre (Important)	2021-06-10
oval:org.opensuse.security:def:2447	P	gimp-2.8.22-3.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2459	P	libotr-devel-4.1.1-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2437	P	NetworkManager-lang-1.10.6-3.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48954	P	libwmf-0_2-7-0.2.8.4-242.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2473	P	xorg-x11-server-wayland-1.19.6-6.19 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48955	P	libwpd-0_10-10-0.10.2-2.4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2441	P	bogofilter-common-1.2.4-1.40 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:1603	P	Security update for ibutils (Low)	2021-05-13
oval:org.opensuse.security:def:70215	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:66767	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:51549	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:51876	P	Security update for MozillaFirefox (Important)	2021-04-27
oval:org.opensuse.security:def:4117	P	Security update for openexr (Moderate)	2021-04-07
oval:org.opensuse.security:def:51746	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:51735	P	Security update for krb5-appl (Important)	2021-02-19
oval:org.opensuse.security:def:51674	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:4748	P	Security update for openldap2 (Moderate)	2021-01-15
oval:org.opensuse.security:def:51855	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:72665	P	cvs-1.12.12-2.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3881	P	eog-devel-3.20.4-7.7 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4110	P	pango-devel-1.40.1-9.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117127	P	389-ds-1.4.3.9~git0.3eb8617f6-1.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2488	P	gnome-photos-3.26.3-4.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4103	P	obs-service-source_validator-0.7-9.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3972	P	libevent-devel-2.0.21-6.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4073	P	libvirt-devel-5.1.0-11.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4002	P	liblcms-devel-1.19-17.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63248	P	389-ds-1.4.3.9~git0.3eb8617f6-1.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3942	P	libXp-devel-1.0.2-3.57 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2512	P	transfig-3.2.6a-2.86 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3889	P	fontforge-20170731-11.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3984	P	libgpgme-devel-1.5.1-1.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4096	P	nasm-2.10.09-4.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107569	P	389-ds-1.4.3.9~git0.3eb8617f6-1.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4033	P	libpng16-compat-devel-1.6.8-14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2528	P	gimp-2.10.12-1.100 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2518	P	PackageKit-gstreamer-plugin-1.1.13-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3901	P	giflib-devel-5.0.5-12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4000	P	libjson-c-devel-0.11-2.15 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3950	P	libXvMC-devel-1.0.8-7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4045	P	librelp-devel-1.2.12-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2159	P	389-ds-1.4.3.9~git0.3eb8617f6-1.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4106	P	openldap2-back-perl-2.4.41-18.63.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2479	P	bluez-cups-5.48-5.13.10 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2526	P	freerdp-2.0.0~rc4-13.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3941	P	libXinerama-devel-1.1.3-3.54 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4056	P	libsrtp-devel-1.5.2-3.2.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3962	P	libbz2-devel-1.0.6-30.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4061	P	libtag-devel-1.9.1-1.218 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:48973	P	PackageKit-gstreamer-plugin-1.1.3-24.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2706	P	Security update for ImageMagick (Moderate)	2020-12-02
oval:org.opensuse.security:def:2744	P	Security update for gdm (Moderate)	2020-12-02
oval:org.opensuse.security:def:2791	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:4769	P	Security update for 389-ds (Important)	2020-12-02
oval:org.opensuse.security:def:2712	P	Security update for evince (Important)	2020-12-02
oval:org.opensuse.security:def:2753	P	Security update for tiff (Moderate)	2020-12-02
oval:org.opensuse.security:def:4830	P	Security update for 389-ds (Important)	2020-12-02
oval:org.opensuse.security:def:2724	P	Security update for jasper (Moderate)	2020-12-02
oval:org.opensuse.security:def:2777	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:4809	P	Security update for qemu (Important)	2020-12-02
oval:org.opensuse.security:def:2702	P	Recommended update for evince (Moderate)	2020-12-02
oval:org.opensuse.security:def:2793	P	Security update for webkit2gtk3 (Important)	2020-12-02
oval:org.opensuse.security:def:2738	P	Security update for ffmpeg (Important)	2020-12-02
oval:org.opensuse.security:def:2783	P	Security update for gnome-shell (Moderate)	2020-12-02
oval:org.opensuse.security:def:49220	P	libpq5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49716	P	spice-vdagent on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50299	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:68690	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:50787	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:51488	P	Security update for osc (Moderate)	2020-12-01
oval:org.opensuse.security:def:50615	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:51279	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:72783	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:50398	P	Security update for cronie (Low)	2020-12-01
oval:org.opensuse.security:def:65343	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:51841	P	Security update for xerces-c (Low)	2020-12-01
oval:org.opensuse.security:def:49100	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49706	P	newt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:69325	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:49238	P	libsqlite3-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49814	P	ant on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50369	P	Security update for yubico-piv-tool (Low)	2020-12-01
oval:org.opensuse.security:def:51814	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:50399	P	Security update for libpng16 (Low)	2020-12-01
oval:org.opensuse.security:def:50950	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:73432	P	liblouis-data on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:69430	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:50848	P	Security update for bluez (Moderate)	2020-12-01
oval:org.opensuse.security:def:50200	P	libpskc-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73550	P	389-ds on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66002	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:50459	P	Security update for openssl-1_1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:66094	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:49305	P	ppc64-diag on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49944	P	dovecot23 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49365	P	yast2-security on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49971	P	postgresql-contrib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51807	P	Security update for go1.11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:70110	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50421	P	Security update for glib2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51054	P	Security update for conmon, fuse-overlayfs, libcontainers-common, podman (Moderate)	2020-12-01
oval:org.opensuse.security:def:53131	P	Security update for targetcli-fb (Moderate)	2020-12-01
oval:org.opensuse.security:def:50460	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:51011	P	Security update for java-11-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:50273	P	Security update for e2fsprogs (Moderate)	2020-12-01
oval:org.opensuse.security:def:53200	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:50465	P	Security update for python-numpy (Moderate)	2020-12-01
oval:org.opensuse.security:def:50169	P	pidgin-plugin-otr on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50034	P	skopeo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49570	P	libpcre2-posix2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50209	P	pidgin-plugin-otr on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50044	P	389-ds on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50554	P	Security update for netpbm (Moderate)	2020-12-01
oval:org.opensuse.security:def:51218	P	Security update for gnome-shell (Moderate)	2020-12-01
oval:org.opensuse.security:def:50482	P	Security update for procps (Important)	2020-12-01
oval:org.opensuse.security:def:51115	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:53192	P	Security update for postgresql10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49219	P	libpoppler-cpp0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50538	P	Security update for python-Flask (Low)	2020-12-01
oval:org.opensuse.security:def:53261	P	Security update for 389-ds (Important)	2020-12-01
oval:org.opensuse.security:def:51780	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:50434	P	Security update for gpg2 (Important)	2020-12-01
oval:org.opensuse.security:def:49549	P	libgxps-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50104	P	uuidd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49990	P	apache2-mod_jk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:91693	P	Security update for 389-ds (Important)	2019-07-01
oval:org.opensuse.security:def:105333	P	Security update for 389-ds (Important)	2019-07-01
oval:org.opensuse.security:def:97674	P	Security update for 389-ds (Important)	2019-07-01
oval:org.opensuse.security:def:90709	P	Security update for 389-ds (Important)	2019-07-01
oval:org.opensuse.security:def:104364	P	Security update for 389-ds (Important)	2019-07-01
oval:org.opensuse.security:def:98643	P	Security update for 389-ds (Important)	2019-07-01
oval:com.redhat.rhsa:def:20180515	P	RHSA-2018:0515: 389-ds-base security update (Important)	2018-03-13
oval:com.redhat.rhsa:def:20180414	P	RHSA-2018:0414: 389-ds-base security and bug fix update (Important)	2018-03-06
oval:com.ubuntu.cosmic:def:2017151350000000	V	CVE-2017-15135 on Ubuntu 18.10 (cosmic) - medium.	2018-01-24
oval:com.ubuntu.disco:def:2017151350000000	V	CVE-2017-15135 on Ubuntu 19.04 (disco) - medium.	2018-01-24
oval:com.ubuntu.cosmic:def:201715135000	V	CVE-2017-15135 on Ubuntu 18.10 (cosmic) - medium.	2018-01-24
oval:com.ubuntu.bionic:def:2017151350000000	V	CVE-2017-15135 on Ubuntu 18.04 LTS (bionic) - medium.	2018-01-24
oval:com.ubuntu.trusty:def:201715135000	V	CVE-2017-15135 on Ubuntu 14.04 LTS (trusty) - medium.	2018-01-24
oval:com.ubuntu.xenial:def:2017151350000000	V	CVE-2017-15135 on Ubuntu 16.04 LTS (xenial) - medium.	2018-01-24
oval:com.ubuntu.artful:def:201715135000	V	CVE-2017-15135 on Ubuntu 17.10 (artful) - medium.	2018-01-24
oval:com.ubuntu.xenial:def:201715135000	V	CVE-2017-15135 on Ubuntu 16.04 LTS (xenial) - medium.	2018-01-24
oval:com.ubuntu.bionic:def:201715135000	V	CVE-2017-15135 on Ubuntu 18.04 LTS (bionic) - medium.	2018-01-24

BACK