Wind River Support Network

HomeDefectsLIN1019-6065
Fixed

LIN1019-6065 : Security Advisory - openldap - CVE-2021-27212

Created: Feb 19, 2021    Updated: Mar 8, 2021
Resolved Date: Mar 8, 2021
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.

CREATE(Triage):(User=admin) [CVE-2021-27212|https://nvd.nist.gov/vuln/detail/CVE-2021-27212]

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube