CVE-2020-36229 HIGH

Published: 2021-01-26 | Last Modified: 2024-11-21 | Status: Modified

Description

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

Additional Descriptions (1)

Se detectó un fallo en ldap_X509dn2bv en OpenLDAP versiones anteriores a 2.4.57, conllevando un bloqueo de slapd en el análisis del DN X.509 en ad_keystring, resultando en una denegación de servicio

CVSS Metrics

Base Score: 7.5 (HIGH)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	NONE
Integrity Impact	NONE
Availability Impact	HIGH

Source: [email protected]

Type: Primary

Exploitability Score: 3.9

Impact Score: 3.6

Base Score: 5.0 (MEDIUM)

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector	NETWORK
Access Complexity	LOW
Authentication	NONE
Confidentiality Impact	NONE
Integrity Impact	NONE
Availability Impact	PARTIAL

Source: [email protected]

Type: Primary

Exploitability Score: 10.0

Impact Score: 2.9

Weaknesses

Source	Type	Description
[email protected]	Primary	en CWE-843

Affected Products

Vendor	Product	Version	Update	Type
openldap	openldap	*	<built-in method update of dict object at 0x72a9994abd80>	Application
debian	debian_linux	9.0	<built-in method update of dict object at 0x72a9994a9800>	Operating System
debian	debian_linux	10.0	<built-in method update of dict object at 0x72a9b0e0f680>	Operating System
apple	mac_os_x	*	<built-in method update of dict object at 0x72a9b0b4a000>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0f100>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0e680>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0f280>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0ed80>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0f040>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0f0c0>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0e0f900>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9994a8400>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9a3092b80>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9994aa600>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9a3090d00>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9a3092900>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0b13780>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0b482c0>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0b4aec0>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9b0b4bb00>	Operating System
apple	mac_os_x	10.14.6	<built-in method update of dict object at 0x72a9994ab640>	Operating System
apple	macos	*	<built-in method update of dict object at 0x72a9994a8340>	Operating System

Affected Configurations

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:a:openldap:openldap::::::::`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:debian:debian_linux:9.0:::::::*`
Yes	`cpe:2.3:o:debian:debian_linux:10.0:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:apple:mac_os_x::::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:-::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-004::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-005::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-006::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2019-007::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-001::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-002::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-003::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-004::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-005::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-006::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2020-007::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2021-001::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2021-002::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:security_update_2021-003::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:supplemental_update::::::`
Yes	`cpe:2.3:o:apple:mac_os_x:10.14.6:supplemental_update_2::::::`
Yes	`cpe:2.3:o:apple:macos::::::::`

References

http://seclists.org/fulldisclosure/2021/May/64
Source: [email protected]

Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2021/May/65
Source: [email protected]

Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2021/May/70
Source: [email protected]

Mailing List Third Party Advisory
https://bugs.openldap.org/show_bug.cgi?id=9425
Source: [email protected]

Issue Tracking Vendor Advisory
https://git.openldap.org/openldap/openldap/-/commit/4bdfffd2889c0c5cdf58bebafbdc8fce4bb2bff0
Source: [email protected]

Patch Vendor Advisory
https://git.openldap.org/openldap/openldap/-/tags/OPENLDAP_REL_ENG_2_4_57
Source: [email protected]

Release Notes Vendor Advisory
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
Source: [email protected]
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
Source: [email protected]
https://lists.debian.org/debian-lts-announce/2021/02/msg00005.html
Source: [email protected]

Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20210226-0002/
Source: [email protected]

Third Party Advisory
https://support.apple.com/kb/HT212529
Source: [email protected]

Third Party Advisory
https://support.apple.com/kb/HT212530
Source: [email protected]

Third Party Advisory
https://support.apple.com/kb/HT212531
Source: [email protected]

Third Party Advisory
https://www.debian.org/security/2021/dsa-4845
Source: [email protected]

Third Party Advisory
http://seclists.org/fulldisclosure/2021/May/64
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2021/May/65
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2021/May/70
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory
https://bugs.openldap.org/show_bug.cgi?id=9425
Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking Vendor Advisory
https://git.openldap.org/openldap/openldap/-/commit/4bdfffd2889c0c5cdf58bebafbdc8fce4bb2bff0
Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory
https://git.openldap.org/openldap/openldap/-/tags/OPENLDAP_REL_ENG_2_4_57
Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes Vendor Advisory
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
Source: af854a3a-2127-422b-91ae-364da2661108
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
Source: af854a3a-2127-422b-91ae-364da2661108
https://lists.debian.org/debian-lts-announce/2021/02/msg00005.html
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20210226-0002/
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://support.apple.com/kb/HT212529
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://support.apple.com/kb/HT212530
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://support.apple.com/kb/HT212531
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://www.debian.org/security/2021/dsa-4845
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory