The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a denial of service (NULL pointer dereference) via a crafted search query.
Published November 6, 2019.
Redhat 389 Directory Server
Redhat Directory Server