Updated: 2025-08-20 00:41:41.814447
Description:
A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | MEDIUM | 5.0 |
| CVSS Version 3.x | HIGH | 7.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| CentOS 6 ELS | openldap | 2.4.40 | 7.5 | HIGH | Released | CLSA-2025:1758645818 | 2025-10-03 13:43:50 | |
| CloudLinux 6 ELS | openldap | 2.4.40 | 7.5 | HIGH | Ignored | 2024-05-07 05:18:09 | ||
| Oracle Linux 6 ELS | openldap | 2.4.40 | 7.5 | HIGH | Released | CLSA-2025:1758636652 | 2025-09-23 21:59:36 |