Qingyang Chen

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.4 Security Update versions prior to 2021-004 Mojave **Description** A malicious application may be able to overwrite arbitrary files due to an issue with path validation logic for hardlinks. This issue was addressed with improved path sanitization. **Recommendations** For macOS versions prior to 11.4, update to macOS Big Sur 11.4 or later to resolve the issue. For Security Update versions prior to 2021-004 Mojave, apply Security Update 2021-004 Mojave or later to fix the problem.

**Name of the Vulnerable Software and Affected Versions** OpenLDAP versions prior to 2.4.57 **Description** The issue is related to an integer underflow in the OpenLDAP implementation, which can be exploited by a remote attacker to cause a denial of service. This is achieved by sending a specially crafted request that triggers a crash in the Certificate Exact Assertion processing, specifically in the `serialNumberAndIssuerCheck` function within `schema init.c`. The exploitation can result in the slapd service crashing. **Recommendations** For versions prior to 2.4.57, update to version 2.4.57 or later to resolve the issue. As a temporary workaround, consider restricting access to the Certificate Exact Assertion processing to minimize the risk of exploitation.