4 matches found
Improper Null Termination
python-ldap is vulnerable to an Improper Null Termination. The vulnerability is due to incorrect handling of the NUL byte in escapednchars, where it emits a backslash plus a literal NUL instead of the RFC-4514 \00, allowing attackers to supply crafted input that consistently breaks DN constructio...
SUSE-SU-2025:3714-1 Security update for python-ldap
This update for python-ldap fixes the following issues: - CVE-2025-61911: Enforce str for escapefilterchars bsc1251912. - CVE-2025-61912: Escape NULs as per RFC 4514 in escapednchars bsc1251913...
SUSE-SU-2025:3695-1 Security update for python-ldap
This update for python-ldap fixes the following issues: - CVE-2025-61911: Enforce str for escapefilterchars bsc1251912. - CVE-2025-61912: Escape NULs as per RFC 4514 in escapednchars bsc1251913...
PT-2025-41610
Name of the Vulnerable Software and Affected Versions python-ldap versions prior to 3.4.5 Description python-ldap is a lightweight directory access protocol LDAP client API for Python. The ldap.dn.escape dn chars function incorrectly escapes x00 by emitting a backslash followed by a literal NUL...