Debian Security Advisory 4860-1

Debian Security Advisory 4860-1: Posted Feb 28, 2021; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4860-1 - A vulnerability in the Certificate List Exact Assertion validation was discovered in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. An unauthenticated remote attacker can take advantage of this flaw to cause a denial of service (slapd daemon crash) via specially crafted packets.; tags | advisory, remote, denial of service, protocol; systems | linux, debian; advisories | CVE-2021-27212; SHA-256 | e6d572d1741ea0e53922e0ddb5e0817baa079772df52005a2a3f4434a186b812; Download | Favorite | View

Debian Security Advisory 4860-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4860-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
February 20, 2021                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openldap
CVE ID         : CVE-2021-27212

A vulnerability in the Certificate List Exact Assertion validation was
discovered in OpenLDAP, a free implementation of the Lightweight
Directory Access Protocol. An unauthenticated remote attacker can take
advantage of this flaw to cause a denial of service (slapd daemon crash)
via specially crafted packets.

For the stable distribution (buster), this problem has been fixed in
version 2.4.47+dfsg-3+deb10u6.

We recommend that you upgrade your openldap packages.

For the detailed security status of openldap please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/openldap

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=kL6d
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 246 files
indoushka 169 files
Jay Turla 150 files
Ubuntu 73 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,120)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,166)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,794)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,837)
UNIX (9,454)
UnixWare (188)
Windows (6,768)
Other

Debian Security Advisory 4860-1

Debian Security Advisory 4860-1

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 4860-1

Share This

Debian Security Advisory 4860-1

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems