CVE-2020-36221

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service schemainit.c serialNumberAndIssuerCheck...

CVE-2020-36221

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service schemainit.c serialNumberAndIssuerCheck...

CVE-2020-36222

A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service...

CVE-2020-36222

A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service...

CVE-2020-36222

A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service...

CVE-2020-36228

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service...

CVE-2020-36228

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service...

CVE-2020-36230

CVE-2020-36230 is an OpenLDAP flaw (pre-2.4.57) causing an assertion failure in slapd during X.509 DN parsing in decode.c ber_next_element, leading to denial of service. Affected: OpenLDAP before 2.4.57. Mitigation: upgrade to OpenLDAP 2.4.57 or later (as indicated by OpenLDAP advisories and link...

CVE-2020-36230

A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c bernextelement, resulting in denial of service...

CVE-2020-36230

A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c bernextelement, resulting in denial of service...

PT-2021-5535 · Openldap +7 · Openldap +7

Name of the Vulnerable Software and Affected Versions: OpenLDAP versions prior to 2.4.57 Description: The issue is related to an integer underflow in the OpenLDAP implementation, which can be exploited by a remote attacker to cause a denial of service. This is achieved by sending a specially...

PT-2021-5552 · Openldap +7 · Openldap +7

Name of the Vulnerable Software and Affected Versions: OpenLDAP versions prior to 2.4.57 Description: An integer underflow was discovered in the Certificate List Exact Assertion processing, resulting in a denial of service. This issue can be exploited by a remote attacker, allowing them to send a...

DEBIAN-CVE-2021-21239

PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does no...

Medium: bind

Issue Overview: A flaw was found in bind. An assertion failure can occur when trying to verify a truncated response to a TSIG-signed request. The highest threat from this vulnerability is to system availability. CVE-2020-8622 Affected Packages: bind Issue Correction: Run yum update bind or yum...

Amazon Linux AMI : bind (ALAS-2021-1457)

The version of bind installed on the remote host is prior to 9.8.2-0.68.rc1.85. It is, therefore, affected by a vulnerability as referenced in the ALAS-2021-1457 advisory. A flaw was found in bind. An assertion failure can occur when trying to verify a truncated response to a TSIG-signed request...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2021-1024)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2021:0032-1)

This update for java-180-ibm fixes the following issues : Update to Java 8.0 Service Refresh 6 Fix Pack 20 bsc1180063,bsc1177943 CVE-2020-14792 CVE-2020-14797 CVE-2020-14781 CVE-2020-14779 CVE-2020-14798 CVE-2020-14796 CVE-2020-14803 - Class libraries : - SOCKETADAPTOR$SOCKETINPUTSTREAM.READ is...

Rocket.Chat Authorization Issues Vulnerability

Rocket.Chat is an open source team chat software. A security vulnerability exists in Rocket.Chat that stems from incorrectly handling SAML logins. No details of the vulnerability are provided at this time...

Rocket.Chat 授权问题漏洞

Rocket.Chat is an open source team chat software. A security vulnerability exists in Rocket.Chat that stems from incorrectly handling SAML logins. No details of the vulnerability are provided at this time...

CVE-2020-35604

An XXE attack can occur in Kronos WebTA 5.0.4 when SAML is used...