CVE-2020-36229

Опубликовано: 26 янв. 2021

Источник: debian

EPSS Низкий

Описание

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
openldap	fixed	2.4.57+dfsg-1		package

Примечания

https://bugs.openldap.org/show_bug.cgi?id=9425
https://git.openldap.org/openldap/openldap/-/commit/4bdfffd2889c0c5cdf58bebafbdc8fce4bb2bff0 (OPENLDAP_REL_ENG_2_4_57)

EPSS

Процентиль: 83%

0.01984

Низкий

Связанные уязвимости

CVE-2020-36229

CVSS3: 7.5

ubuntu

больше 4 лет назад

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

CVE-2020-36229

CVSS3: 7.5

redhat

больше 4 лет назад

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

CVE-2020-36229

CVSS3: 7.5

nvd

больше 4 лет назад

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

CVE-2020-36229

CVSS3: 7.5

msrc

больше 4 лет назад

Описание отсутствует

GHSA-2vm8-9q6f-6vxg

CVSS3: 7.5

github

около 3 лет назад

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

EPSS

Процентиль: 83%

0.01984

Низкий