Wind River Support Network

HomeDefectsLIN10-8196

Fixed

LIN10-8196 : Security Advisory - openldap - CVE-2020-36227

Created: Jan 27, 2021 Updated: Dec 19, 2021

Resolved Date: Apr 1, 2021

Found In Version: 10.17.41.1

Fix Version: 10.17.41.24

Severity: Standard

Applicable for: Wind River Linux LTS 17

Component/s: Userspace

Description

A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service.

CREATE(Triage):(User=admin) [CVE-2020-36227|https://nvd.nist.gov/vuln/detail/CVE-2020-36227]

CVEs

CVE-2020-36227