Download
| Alert*
oval:org.secpod.oval:def:70265
openldap: Lightweight Directory Access Protocol OpenLDAP could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:89002837 This update for openldap2 fixes the following issues: - CVE-2020-25709: Fixed a crash caused by specially crafted network traffic . - CVE-2020-25710: Fixed a crash caused by specially crafted network traffic . oval:org.secpod.oval:def:506708 OpenLDAP is an open-source suite of Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols used to access and maintain distributed directory information services over an IP network. Security Fix: * openldap: assertion failure in Certificate List syntax ... oval:org.secpod.oval:def:67877 Two vulnerabilities in the certificate list syntax verification and in the handling of CSN normalization were discovered in libldap2-dev, a free implementation of the Lightweight Directory Access Protocol. An unauthenticated remote attacker can take advantage of these flaws to cause a denial of serv ... oval:org.secpod.oval:def:1801926 openldap: vulnerability with slapd normalization handling with modrdn oval:org.secpod.oval:def:1801924 openldap: Multiple vulnerabilities. A malicious packet can force OpenLDAP to fail an assertion in certificateListValidate function in servers/slapd/schema_init.c. oval:org.secpod.oval:def:605306 Two vulnerabilities in the certificate list syntax verification and in the handling of CSN normalization were discovered in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. An unauthenticated remote attacker can take advantage of these flaws to cause a denial of service ... oval:org.secpod.oval:def:1700873 A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP's slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability. A flaw was found in OpenLDAP. This flaw allows an attacker who ... oval:org.secpod.oval:def:89049501 This update for openldap2 fixes the following issues: Security issues fixed: - CVE-2020-25709: Fixed a crash caused by specially crafted network traffic . - CVE-2020-25710: Fixed a crash caused by specially crafted network traffic . Non-security issue fixed: - Retry binds in the LDAP backend when th ... oval:org.secpod.oval:def:205945 OpenLDAP is an open-source suite of Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols used to access and maintain distributed directory information services over an IP network. Security Fix: * openldap: assertion failure in Certificate List syntax ... oval:org.secpod.oval:def:1505539 [2.4.44-25] - Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation - Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input oval:org.secpod.oval:def:705760 openldap: Lightweight Directory Access Protocol OpenLDAP could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:68775 The host is installed with Apple Mac OS X 10.14.6, 10.15.7 or Apple Mac OS 11 before 11.2 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle checks issue. Successful exploitation allows an attacker to cause a denial of service. oval:org.secpod.oval:def:68751 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code or cause denial of service. |