CVE-2020-25709
18.05.2021, 12:15
A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| openldap | openldap | 𝑥 < 2.4.56 |
| debian | debian_linux | 9.0 |
| debian | debian_linux | 10.0 |
| apple | mac_os_x | 10.14.0 ≤ 𝑥 < 10.14.6 |
| apple | mac_os_x | 10.15 ≤ 𝑥 < 10.15.7 |
| apple | mac_os_x | 10.14.6 |
| apple | mac_os_x | 10.14.6:security_update_2019-004 |
| apple | mac_os_x | 10.14.6:security_update_2019-005 |
| apple | mac_os_x | 10.14.6:security_update_2019-006 |
| apple | mac_os_x | 10.14.6:security_update_2019-007 |
| apple | mac_os_x | 10.14.6:security_update_2020-001 |
| apple | mac_os_x | 10.14.6:security_update_2020-002 |
| apple | mac_os_x | 10.14.6:security_update_2020-003 |
| apple | mac_os_x | 10.14.6:security_update_2020-004 |
| apple | mac_os_x | 10.14.6:security_update_2020-005 |
| apple | mac_os_x | 10.14.6:security_update_2020-006 |
| apple | mac_os_x | 10.14.6:security_update_2020-007 |
| apple | mac_os_x | 10.15.7 |
| apple | mac_os_x | 10.15.7:security_update_2020-005 |
| apple | mac_os_x | 10.15.7:security_update_2020-007 |
| apple | mac_os_x | 10.15.7:supplemental_update |
| apple | macos | 11.0 ≤ 𝑥 < 11.0.1 |
| redhat | jboss_core_services | - |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libldap-2_4-2 |
| ||||||||||||||||||||||||||||||||||||||
| libldap-2_4-2-32bit |
| ||||||||||||||||||||||||||||||||||||||
| libldap-data |
| ||||||||||||||||||||||||||||||||||||||
| openldap2 |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-back-meta |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-back-perl |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-client |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-devel |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-devel-static |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-doc |
| ||||||||||||||||||||||||||||||||||||||
| openldap2-ppolicy-check-password |
|
Red Hat Enterprise Linux Releases
Common Weakness Enumeration
References