{"affected":[{"ecosystem_specific":{"binaries":[{"libldap-openssl1-2_4-2":"2.4.26-0.74.26.1","libldap-openssl1-2_4-2-32bit":"2.4.26-0.74.26.1","libldap-openssl1-2_4-2-x86":"2.4.26-0.74.26.1","openldap2-client-openssl1":"2.4.26-0.74.26.1","openldap2-openssl1":"2.4.26-0.74.26.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11-SECURITY","name":"openldap2-client-openssl1","purl":"pkg:rpm/suse/openldap2-client-openssl1&distro=SUSE%20Linux%20Enterprise%20Server%2011-SECURITY"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.26-0.74.26.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"compat-libldap-2_3-0":"2.3.37-2.74.26.1","libldap-2_4-2":"2.4.26-0.74.26.1","openldap2":"2.4.26-0.74.26.1","openldap2-back-meta":"2.4.26-0.74.26.1","openldap2-client":"2.4.26-0.74.26.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Point of Sale 11 SP3","name":"openldap2","purl":"pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.26-0.74.26.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"compat-libldap-2_3-0":"2.3.37-2.74.26.1","libldap-2_4-2":"2.4.26-0.74.26.1","openldap2":"2.4.26-0.74.26.1","openldap2-back-meta":"2.4.26-0.74.26.1","openldap2-client":"2.4.26-0.74.26.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Point of Sale 11 SP3","name":"openldap2-client","purl":"pkg:rpm/suse/openldap2-client&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.26-0.74.26.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"compat-libldap-2_3-0":"2.3.37-2.74.26.1","libldap-2_4-2":"2.4.26-0.74.26.1","libldap-2_4-2-32bit":"2.4.26-0.74.26.1","openldap2":"2.4.26-0.74.26.1","openldap2-back-meta":"2.4.26-0.74.26.1","openldap2-client":"2.4.26-0.74.26.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","name":"openldap2","purl":"pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.26-0.74.26.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"compat-libldap-2_3-0":"2.3.37-2.74.26.1","libldap-2_4-2":"2.4.26-0.74.26.1","libldap-2_4-2-32bit":"2.4.26-0.74.26.1","openldap2":"2.4.26-0.74.26.1","openldap2-back-meta":"2.4.26-0.74.26.1","openldap2-client":"2.4.26-0.74.26.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","name":"openldap2-client","purl":"pkg:rpm/suse/openldap2-client&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.26-0.74.26.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for openldap2 fixes the following issues:\n\n- bsc#1182408 CVE-2020-36230 - an assertion failure in slapd in the\n  X.509 DN parsing in decode.c ber_next_element, resulting in denial\n  of service.\n- bsc#1182411 CVE-2020-36229 - ldap_X509dn2bv crash in the X.509 DN\n  parsing in ad_keystring, resulting in denial of service.\n- bsc#1182412 CVE-2020-36228 - integer underflow leading to crash\n  in the Certificate List Exact Assertion processing, resulting in\n  denial of service.\n- bsc#1182413 CVE-2020-36227 - infinite loop in slapd with the\n  cancel_extop Cancel operation, resulting in denial of service.\n- bsc#1182416 CVE-2020-36225 - double free and slapd crash in the\n  saslAuthzTo processing, resulting in denial of service.\n- bsc#1182417 CVE-2020-36224 - invalid pointer free and slapd crash\n  in the saslAuthzTo processing, resulting in denial of service.\n- bsc#1182415 CVE-2020-36226 - memch->bv_len miscalculation and slapd\n  crash in the saslAuthzTo processing, resulting in denial of service.\n- bsc#1182419 CVE-2020-36222 - assertion failure in slapd in the\n  saslAuthzTo validation, resulting in denial of service.\n- bsc#1182420 CVE-2020-36221 - slapd crashes in the Certificate Exact\n  Assertion processing, resulting in denial of service (schema_init.c\n  serialNumberAndIssuerCheck).\n- bsc#1182418 CVE-2020-36223 - slapd crash in the Values Return Filter\n  control handling, resulting in denial of service (double free and\n  out-of-bounds read).\n- bsc#1182279 CVE-2021-27212 - an assertion failure in slapd can occur\n    in the issuerAndThisUpdateCheck function via a crafted packet,\n    resulting in a denial of service (daemon exit) via a short timestamp.\n    This is related to schema_init.c and checkTime.\n- resynchronise changelogs with subpackages (bsc#1184020).\n","id":"SUSE-SU-2021:14700-1","modified":"2021-04-16T09:42:39Z","published":"2021-04-16T09:42:39Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-202114700-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182279"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182408"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182411"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182412"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182413"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182415"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182416"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182417"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182418"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182419"},{"type":"REPORT","url":"https://bugzilla.suse.com/1182420"},{"type":"REPORT","url":"https://bugzilla.suse.com/1184020"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36221"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36222"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36223"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36224"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36225"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36226"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36227"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36228"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36229"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36230"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-27212"}],"related":["CVE-2020-36221","CVE-2020-36222","CVE-2020-36223","CVE-2020-36224","CVE-2020-36225","CVE-2020-36226","CVE-2020-36227","CVE-2020-36228","CVE-2020-36229","CVE-2020-36230","CVE-2021-27212"],"summary":"Security update for openldap2","upstream":["CVE-2020-36221","CVE-2020-36222","CVE-2020-36223","CVE-2020-36224","CVE-2020-36225","CVE-2020-36226","CVE-2020-36227","CVE-2020-36228","CVE-2020-36229","CVE-2020-36230","CVE-2021-27212"]}