MiracleLinux 7 : openldap-2.4.44-25.el7 (AXSA:2022-3084:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3084:01 advisory. openldap: assertion failure in Certificate List syntax validation CVE-2020-25709 openldap: assertion failure in CSN normalization with invalid input...

openldap security update

CentOS Errata and Security Advisory CESA-2022:0621 An update for openldap is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Scientific Linux Security Update : openldap on SL7.x i686/x86_64 (2022:0621)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:0621-1 advisory. - openldap: assertion failure in Certificate List syntax validation CVE-2020-25709 - openldap: assertion failure in CSN normalization with invali...

openldap security update

2.4.44-25 - Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation 2040539 - Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input 2040538...

openldap: assertion failure in CSN normalization with invalid input

A flaw was found in OpenLDAP. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23. The highest threat from this vulnerability is to system availability...

Moderate: Red Hat Security Advisory: openldap security update

An update for openldap is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

RHEL 7 : openldap (RHSA-2022:0621)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0621 advisory. OpenLDAP is an open-source suite of Lightweight Directory Access Protocol LDAP applications and development tools. LDAP is a set of protocol...

The vulnerability of the csnNormalize23() function in the LDAP OpenLDAP implementation, related to the insufficient use of the assert() function, allows a perpetrator to cause a service failure.

The vulnerability of the csnNormalize23 function in the LDAP OpenLDAP implementation is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cause service failures using a malicious package...

Denial Of Service (DoS)

openldap is vulnerable to denial of service. An assertion failure in CSN normalization allows an attacker to crash the application with malicious input...

[SECURITY] [DSA 4792-1] openldap security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4792-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 17, 2020 https://www.debian.org/security/faq -...

OpenLDAP Security Vulnerabilities

OpenLDAP is an open source implementation of the Lightweight Directory Access Protocol LDAP from the OpenLDAP Openldap Foundation in the United States. A security vulnerability exists in OpenLDAP CSN Normalization, which can be exploited by an attacker to trigger a denial of service by forcing an...