Encukou

Name of the Vulnerable Software and Affected Versions: python-ldap versions prior to 3.4.0 Description: The issue is related to a regular expression denial of service (ReDoS) flaw in the LDAP schema parser. By sending crafted regex input, a remote authenticated attacker could exploit this vulnerability to cause a denial of service condition. This occurs when `ldap.schema` is used for untrusted schema definitions. Recommendations: For versions prior to 3.4.0, as a temporary workaround, consider checking input for an excessive amount of backslashes in schemas, as more than a dozen backslashes per line are atypical. Update to version 3.4.0 or later, which contains a workaround to prevent ReDoS attacks by refusing schema definitions with an excessive amount of backslashes.