Wind River Support Network

HomeDefectsLIN1018-7262
Fixed

LIN1018-7262 : Security Advisory - openldap - CVE-2021-27212

Created: Feb 19, 2021    Updated: Mar 23, 2021
Resolved Date: Mar 23, 2021
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.

CREATE(Triage):(User=admin) [CVE-2021-27212|https://nvd.nist.gov/vuln/detail/CVE-2021-27212]

CVEs


Live chat
Online