PT-2021-5551 · Openldap+7 · Openldap+7

Padma81

Published

2021-01-25

Updated

2025-08-24

CVE-2020-36229

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions OpenLDAP versions prior to 2.4.57

Description The issue is related to an incompatible type access in the OpenLDAP protocol implementation. It allows a remote attacker to send a specially crafted request to slapd, potentially leading to a denial of service (DoS) attack. The flaw is in the ldap X509dn2bv function and affects the X.509 DN parsing in ad keystring, causing a slapd crash.

Recommendations For OpenLDAP versions prior to 2.4.57, update to version 2.4.57 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable ldap X509dn2bv function until a patch is available.

Fix

DoS

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-843

Related Identifiers

ALT-PU-2021-1333

ALT-PU-2021-1352

ALT-PU-2021-1354

BDU:2021-06401

BIT-OPENLDAP-2020-36229

CVE-2020-36229

DLA-2544-1

DSA-4845-1

MGASA-2021-0105

OESA-2021-1062

OPENSUSE-SU-2021:0408-1

OPENSUSE-SU-2021_0408-1

ROSA-SA-2025-2550

SUSE-SU-2021:0692-1

SUSE-SU-2021:0693-1

SUSE-SU-2021:0723-1

SUSE-SU-2021:14700-1

SUSE-SU-2021_14700-1

USN-4724-1

USN-7713-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Apple Macos

Openldap

Red Os

Suse

Ubuntu

PT-2021-5551 · Openldap+7 · Openldap+7

CVE-2020-36229

Weakness Enumeration

Related Identifiers

Affected Products

References · 109