CVE-2021-27212: In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime. Unreleased patch: https://git.openldap.org/openldap/openldap/-/commit/9badb73425a67768c09bcaed1a9c26c684af6c30 Maintainers, please apply the patch if it looks reasonable to you.
CVE-2020-20178: A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability. Issue: https://bugs.openldap.org/show_bug.cgi?id=9454 Seems to be the same fix as the first. CVE-2021-25709: A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability. Issue: https://bugs.openldap.org/show_bug.cgi?id=9383 Patch: https://git.openldap.org/openldap/openldap/-/commit/67670f4544e28fb09eb7319c39f404e1d3229e65
Package list is empty or all packages have requested keywords.
(In reply to John Helmert III from comment #0) > CVE-2021-27212: > > In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion > failure in slapd can occur in the issuerAndThisUpdateCheck function via a > crafted packet, resulting in a denial of service (daemon exit) via a short > timestamp. This is related to schema_init.c and checkTime. > > > Unreleased patch: > https://git.openldap.org/openldap/openldap/-/commit/ > 9badb73425a67768c09bcaed1a9c26c684af6c30 > > Maintainers, please apply the patch if it looks reasonable to you. (In reply to John Helmert III from comment #1) > CVE-2020-20178: > > A flaw was found in OpenLDAP. This flaw allows an attacker who can send a > malicious packet to be processed by OpenLDAP’s slapd server, to trigger an > assertion failure. The highest threat from this vulnerability is to system > availability. > > Issue: https://bugs.openldap.org/show_bug.cgi?id=9454 > > Seems to be the same fix as the first. In 2.4.58. > > CVE-2021-25709: > > A flaw was found in OpenLDAP. This flaw allows an attacker who can send a > malicious packet to be processed by OpenLDAP’s slapd server, to trigger an > assertion failure. The highest threat from this vulnerability is to system > availability. > > Issue: https://bugs.openldap.org/show_bug.cgi?id=9383 > Patch: > https://git.openldap.org/openldap/openldap/-/commit/67670f4544e28fb09eb7319c39f404e1d3229e65 In 2.4.56.