CVE-2020-36226 - log back

CVE-2020-36226 edited at 25 Jan 2021 12:29:25
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service.
References
+ https://bugs.openldap.org/show_bug.cgi?id=9413
+ https://git.openldap.org/openldap/openldap/-/commit/d169e7958a3e0dc70f59c8374bf8a59833b7bdd8
Notes
CVE-2020-36226 created at 25 Jan 2021 12:17:08