Astra Linux - уязвимость в openldap

A flaw was discovered in OpenLDAP before version 2.4.57, which led to a double-free and slapd crash during the saslAuthzTo process, resulting in a denial of service...

Astra Linux - уязвимость в openldap

A flaw was discovered in OpenLDAP before version 2.4.57, which led to an assertion failure in slapd’s saslAuthzTo validation process, resulting in a denial of service...

Astra Linux - уязвимость в openldap

A flaw was discovered in OpenLDAP before version 2.4.57, which led to an invalid pointer issue and a crash in the slapd process during the saslAuthzTo processing step. This caused a denial-of-service attack...

Astra Linux - уязвимость в openldap

In OpenLDAP versions 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function due to a malicious packet. This leads to a denial of service daemon exits caused by a short timestamp. This issue is related to the schemainit.c file and the...

Astra Linux - уязвимость в openldap

A flaw was discovered in OpenLDAP before version 2.4.57, which led to an incorrect calculation of memch-bvlen and caused a crash in the slapd process during the saslAuthzTo processing step. This resulted in a denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017550)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017550 advisory. An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017595)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017595 advisory. In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet,...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017537)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017537 advisory. A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancelextop Cancel operation, resulting in denial of service. Tenable h...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017655)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017655 advisory. A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAPs slapd server, to trigger an assertion failure...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017543)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017543 advisory. A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch-bvlen miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017562)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017562 advisory. A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service. Tenable has...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017508)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017508 advisory. A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial of service. Tenable has...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017555)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017555 advisory. An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017514)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017514 advisory. A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting in denial of service double free and...

Astra Linux - уязвимость в openldap

A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability...

Astra Linux - уязвимость в openldap

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service...

Astra Linux - уязвимость в 389-ds-base

A vulnerability was discovered in the 389 Directory Server, which allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, without the need for any bind or other...

CLSA-2026-1777393215 openldap: Fix of 15 CVEs

CVE-2019-13565: SASL session encryption SSF not reset on new connection, allowing downgrade - CVE-2020-12243: slapd crash via deeply nested LDAP search filter boolean expressions - CVE-2020-25692: NULL pointer dereference in slapd during modRDN request - CVE-2020-25709: slapd assertion failure...

CLSA-2026-1777310722 openldap: Fix of 15 CVEs

CVE-2019-13565: SASL session encryption SSF not reset on new connection, allowing downgrade - CVE-2020-12243: slapd crash via deeply nested LDAP search filter boolean expressions - CVE-2020-25692: NULL pointer dereference in slapd during modRDN request - CVE-2020-25709: slapd assertion failure...

CLSA-2026-1777051819 openldap: Fix of 2 CVEs

CVE-2022-29155: fix a SQL injection vulnerability in the back-sql backend to slapd - CVE-2021-27212: fix denial of service daemon exit via a short timestamp if slapd is used...