160 matches found
Debian DSA-4884-1 : ldb - security update
Multiple vulnerabilities have been discovered in ldb, a LDAP-like embedded database built on top of TDB. - CVE-2020-10730 Andrew Bartlett discovered a NULL pointer dereference and use-after-free flaw when handling 'ASQ' and 'VLV' LDAP controls and combinations with the LDAP pagedresults feature. ...
Debian: Security Advisory (DSA-4884-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4884-1] ldb security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4884-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 02, 2021 https://www.debian.org/security/faq -...
DSA-4884-1 ldb - security update
Bulletin has no description...
Debian DLA-2611-1 : ldb security update
Two issues have been found in ldb, an LDAP-like embedded database, for example used with samba. Both issues are related to out of bounds access, either an out of bound read or a heap corrupton, both most likely leading to an application crash. For Debian 9 stretch, these problems have been fixed ...
Vulnerabilities fixed in LDB
Several vulnerabilities have been fixed in LDB. LDB is an embedded database in line with LDAP and is used among other things by SAMBA. An unauthenticated remote malicious party could potentially exploit the vulnerabilities potentially exploit them to cause a denial-of-service on LDB cause. This...
Debian: Security Advisory (DLA-2611-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2611-1] ldb security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2611-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz March 31, 2021 https://wiki.debian.org/LTS -...
DLA-2611-1 ldb - security update
Bulletin has no description...
SUSE SLED15 / SLES15 Security Update : ldb (SUSE-SU-2021:0944-1)
This update for ldb fixes the following issues : CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs bsc1183572. CVE-2021-20277: Fixed an out of bounds read in ldbhandlerfold bsc1183574. Note that Tenable Network Security has extracted the preceding description block...
SUSE SLED15 / SLES15 Security Update : ldb (SUSE-SU-2021:0945-1)
This update for ldb fixes the following issues : CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs bsc1183572. CVE-2021-20277: Fixed an out of bounds read in ldbhandlerfold bsc1183574. Note that Tenable Network Security has extracted the preceding description block...
openSUSE Security Update : ldb (openSUSE-2021-469)
This update for ldb fixes the following issues : - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs bsc1183572. - CVE-2021-20277: Fixed an out of bounds read in ldbhandlerfold bsc1183574. This update was imported from the SUSE:SLE-15-SP2:Update update project. C Tenable...
USN-4888-2 ldb vulnerabilities
USN-4888-1 fixed several vulnerabilities in ldb. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Douglas Bagnall discovered that ldb, when used with Samba, incorrectly handled certain LDAP attributes. A remote attacker could possibly use this issue t...
OPENSUSE-SU-2021:0469-1 Security update for ldb
This update for ldb fixes the following issues: - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs bsc1183572. - CVE-2021-20277: Fixed an out of bounds read in ldbhandlerfold bsc1183574. This update was imported from the SUSE:SLE-15-SP2:Update update project...
Ubuntu: Security Advisory (USN-4888-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for ldb (important)
openSUSE Security Update: Security update for ldb Announcement ID: openSUSE-SU-2021:0469-1 Rating: important References: 1183572 1183574 Cross-References: CVE-2020-27840 CVE-2021-20277 CVSS scores: CVE-2020-27840 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-20277 SUSE: 7.1...
USN-4888-1: ldb vulnerabilities
Douglas Bagnall discovered that ldb, when used with Samba, incorrectly handled certain LDAP attributes. A remote attacker could possibly use this issue to cause the LDAP server to crash, resulting in a denial of service. CVE-2021-20277 Douglas Bagnall discovered that ldb, when used with Samba,...
SUSE-SU-2021:0945-1 Security update for ldb
This update for ldb fixes the following issues: - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs bsc1183572. - CVE-2021-20277: Fixed an out of bounds read in ldbhandlerfold bsc1183574...
SUSE-SU-2021:0944-1 Security update for ldb
This update for ldb fixes the following issues: - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs bsc1183572. - CVE-2021-20277: Fixed an out of bounds read in ldbhandlerfold bsc1183574...
CVE-2020-27840
A flaw was found in samba. Spaces used in a string around a domain name DN, while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds memory, resulting in a crash. The highest threat from this vulnerability is to system availability...