pkg:Debian/openldap
61 total CVEsCRITICAL5HIGH29MEDIUM7
✅ Check your installed version
All known vulnerabilities
- from 0, < 2.4.57+dfsg-3+deb11u1
- from 0, < 2.4.44+dfsg-5+deb9u9
- from 0, < 2.4.47+dfsg-3+deb10u7
- from 0, < 2.4.23-1
- from 0, < 2.4.11-1+lenny2
- from 0
- from 0, < 2.4.56+dfsg-1
- from 0, < 2.4.44+dfsg-5+deb9u6
- from 0, < 2.4.47+dfsg-3+deb10u4
- from 0, < 2.4.56+dfsg-1
- from 0, < 2.4.57+dfsg-2
- from 0, < 2.4.44+dfsg-5+deb9u8
- from 0, < 2.4.47+dfsg-3+deb10u6
- HIGH7.5CVE-2020-36230A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_eleme…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36229A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulti…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36228An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing,…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36227A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in d…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36226A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, re…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36225A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36224A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36223A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting in denial…from 0, < 2.4.57+dfsg-1
- HIGH7.5CVE-2020-36222A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial…from 0, < 2.4.57+dfsg-1
- from 0, < 2.4.57+dfsg-1
- from 0, < 2.4.47+dfsg-3+deb10u5
- from 0, < 2.4.44+dfsg-5+deb9u7
- from 0, < 2.4.55+dfsg-1
- from 0, < 2.4.47+dfsg-3+deb10u3
- from 0, < 2.4.44+dfsg-5+deb9u5
- from 0, < 2.4.40+dfsg-1+deb8u6
- from 0, < 2.4.50+dfsg-1
- from 0, < 2.4.44+dfsg-5+deb9u4
- from 0, < 2.4.48+dfsg-1
- HIGH7.5CVE-2017-17740contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to f…from 0
- HIGH7.5CVE-2015-3276The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher str…from 0
- from 0, < 2.4.31-2+deb7u3
- from 0, < 2.4.40+dfsg-1+deb8u3
- from 0, < 2.4.44+dfsg-5
- from 0, < 2.4.48+dfsg-1
- from 0, < 2.4.40+dfsg-1+deb8u5
- MEDIUM4.7CVE-2017-14159slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to k…from 0
- MEDIUM4.2CVE-2020-15719libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 suppor…from 0
- —CVE-2026-22185OpenLDAP Lightning Memory-Mapped Database (LMDB) versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underf…from 0
- from 0, < 2.4.31-2+deb7u1
- from 0, < 2.4.42+dfsg-2
- from 0, < 2.4.23-7.3+deb6u2
- —CVE-2014-9713The default slapd configuration in the Debian openldap package 2.4.23-3 through 2.4.39-1.1 allows remote authenticated users to modify the…from 0, < 2.4.40-2
- —CVE-2015-1546Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a deni…from 0, < 2.4.40-4
- —CVE-2015-1545The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial…from 0, < 2.4.40-4
- from 0, < 2.4.31-2
- from 0, < 2.4.39-1.1
- from 0, < 2.4.31-1
- from 0, < 2.4.23-7.3+deb6u1
- —CVE-2011-4079Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (s…from 0, < 2.4.28-1
- —CVE-2011-1081modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relative Distin…from 0, < 2.4.25-1
- —CVE-2011-1025bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN), which allows rem…from 0, < 2.4.25-1
- —CVE-2011-1024chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (a…from 0, < 2.4.25-1
- —CVE-2010-0212OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call with a zero-length RDN destination string, w…from 0, < 2.4.23-1
- from 0, < 2.4.11-1+lenny1
- from 0, < 2.4.17-2.1
- from 0, < 2.4.10-2+lenny1
- from 0, < 2.4.10-3