openldap · threatengine.sh

CVE-2023-2953

all versions

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

7.5HIGH

CVE-2022-29155

>= 2.0 and < 2.5.12

In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to

9.8CRITICAL

CVE-2020-25710

< 2.4.56

A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by Ope

7.5HIGH

CVE-2020-25709

< 2.4.56

A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd s

7.5HIGH

CVE-2021-27212

<= 2.4.57

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck f

7.5HIGH

CVE-2020-36230

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_n

7.5HIGH

CVE-2020-36229

< 2.4.57

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring

7.5HIGH

CVE-2020-36228

< 2.4.57

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion pro

7.5HIGH

CVE-2020-36227

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resul

7.5HIGH

CVE-2020-36226

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch-bv_len miscalculation and slapd crash in the saslAuthzTo proces

7.5HIGH

CVE-2020-36225

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting

7.5HIGH

CVE-2020-36224

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing,

7.5HIGH

CVE-2020-36223

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting i

7.5HIGH

CVE-2020-36222

< 2.4.57

A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting

7.5HIGH

CVE-2020-36221

< 2.4.57

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processi

7.5HIGH

CVE-2020-25692

< 2.4.55

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An u

7.5HIGH

CVE-2020-15719

< 2.4.46-10.el8

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC61

4.2MEDIUM

CVE-2020-12243

< 2.4.50

In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of servic

7.5HIGH

CVE-2014-8182

all versions

An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to

7.5HIGH

CVE-2019-13565

>= 2.0 and <= 2.4.47

An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the S

7.5HIGH

CVE-2019-13057

< 2.4.48

An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN (database admin) p

4.9MEDIUM

CVE-2017-17740

<= 2.4.45

contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, atte

7.5HIGH

CVE-2017-14159

<= 2.4.45

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local u

4.7MEDIUM

CVE-2016-4984

all versions

/usr/libexec/openldap/generate-server-cert.sh in openldap-servers sets weak permissions for the TLS certificate, which allows loca

4.7MEDIUM

CVE-2017-9287

<= 2.4.44

servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search t

6.5MEDIUM

CVE-2015-3276

< 2.5

The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode c

7.5HIGH

CVE-2015-6908

<= 2.4.42

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of se

CVE-2014-9713

all versions

The default slapd configuration in the Debian openldap package 2.4.23-3 through 2.4.39-1.1 allows remote authenticated users to mo

CVE-2015-1546

all versions

Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cau

CVE-2015-1545

all versions

The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause

CVE-2013-4449

<= 2.4.36

The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause

CVE-2012-1164

<= 2.4.29

slapd in OpenLDAP before 2.4.30 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an LD

CVE-2012-2668

<= 2.4.31

libraries/libldap/tls_m.c in OpenLDAP, possibly 2.4.31 and earlier, when using the Mozilla NSS backend, always uses the default ci

CVE-2011-4079

<= 2.4.26

Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of s

CVE-2011-1081

all versions

modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relati

CVE-2011-1025

all versions

bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN), which a

CVE-2011-1024

all versions

chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_u

CVE-2010-0212

all versions

OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call with a zero-length RDN destination

CVE-2010-0211

all versions

The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize functi

9.8CRITICAL

CVE-2009-3767

< 2.4.18

libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a '

CVE-2008-2952

all versions

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted AS

CVE-2008-0658

all versions

slapd/back-bdb/modrdn.c in the BDB backend for slapd in OpenLDAP 2.3.39 allows remote authenticated users to cause a denial of ser

CVE-2007-6698

<= 2.3.35

The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service (crash) via a p

CVE-2007-5708

all versions

slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP before 2.3.39, when running as a proxy-caching server, allocates memory usin

CVE-2007-5707

all versions

OpenLDAP before 2.3.39 allows remote attackers to cause a denial of service (slapd crash) via an LDAP request with a malformed obj

CVE-2006-6493

<= 2.4.3

Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and earlier, when OpenLDAP is compil

CVE-2006-5779

< 2.3.29

OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP BIND requests with long authci

7.5HIGH

CVE-2006-4600

all versions

slapd in OpenLDAP before 2.3.25 allows remote authenticated users with selfwrite Access Control List (ACL) privileges to modify ar

CVE-2006-2754

all versions

Stack-based buffer overflow in st.c in slurpd for OpenLDAP before 2.3.22 might allow attackers to execute arbitrary code via a lon

CVE-2005-4442

<= 2.2.28_r2

Untrusted search path vulnerability in OpenLDAP before 2.2.28-r3 on Gentoo Linux allows local users in the portage group to gain p

CVE-2004-1880

all versions

Memory leak in the back-bdb backend for OpenLDAP 2.1.12 and earlier allows remote attackers to cause a denial of service (memory c

CVE-2004-0823

all versions

OpenLDAP 1.0 through 2.1.19, as used in Apple Mac OS 10.3.4 and 10.3.5 and possibly other operating systems, may allow certain aut

CVE-2003-1201

<= 2.1.12

ldbm_back_exop_passwd in the back-ldbm backend in passwd.c for OpenLDAP 2.1.12 and earlier, when the slap_passwd_parse function do

CVE-2002-1508

<= 2.2.0

slapd in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows local users to overwrite arbitrary files via a race condition during the

CVE-2002-1379

<= 2.2.0

OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc

CVE-2002-1378

<= 2.2.0

Multiple buffer overflows in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allow remote attackers to execute arbitrary code via (1) lon

CVE-2002-0045

<= 2.0.19

slapd in OpenLDAP 2.0 through 2.0.19 allows local users, and anonymous users before 2.0.8, to conduct a "replace" action on access

CVE-2001-0977

all versions

slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an inv

CVE-2000-0748

all versions

OpenLDAP 1.2.11 and earlier improperly installs the ud binary with group write permissions, which could allow any user in that gro

CVE-2000-0336

all versions

Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.