USN-4634-2: OpenLDAP vulnerabilities

Ubuntu 6334 Published by

An OpenLDAP security update has been released for Ubuntu 12.04 ESM and 14.04 ESM.



USN-4634-2: OpenLDAP vulnerabilities


=========================================================================
Ubuntu Security Notice USN-4634-2
November 23, 2020

openldap vulnerabilities
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 ESM
- Ubuntu 12.04 ESM

Summary:

OpenLDAP could be made to crash if it received specially crafted network
traffic.

Software Description:
- openldap: Lightweight Directory Access Protocol

Details:

USN-4634-1 fixed several vulnerabilities in OpenLDAP. This update provides
the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM.

Original advisory details:

It was discovered that OpenLDAP incorrectly handled certain malformed
inputs. A remote attacker could possibly use this issue to cause OpenLDAP
to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
slapd 2.4.31-1+nmu2ubuntu8.5+esm4

Ubuntu 12.04 ESM:
slapd 2.4.28-1.1ubuntu4.12

In general, a standard system update will make all the necessary changes.

References:
  https://usn.ubuntu.com/4634-2
  https://usn.ubuntu.com/4634-1
CVE-2020-25709, CVE-2020-25710


openSUSE-SU-2020:2000-1: important: Security update for rmt-server

DLA 2464-1: thunderbird security update

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...