CVE-2020-12243
First published: Tue Apr 28 2020(Updated: )
In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).
Credit: CVE-2020-12243 cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS Catalina | <10.15.6 | 10.15.6 |
| Apple Mojave | ||
| Apple High Sierra | ||
| debian/openldap | 2.4.47+dfsg-3+deb10u7 2.4.57+dfsg-3+deb11u1 2.5.13+dfsg-5 | |
| ubuntu/openldap | <2.4.50 | 2.4.50 |
| ubuntu/openldap | <2.4.45+dfsg-1ubuntu1.5 | 2.4.45+dfsg-1ubuntu1.5 |
| ubuntu/openldap | <2.4.48+dfsg-1ubuntu1.1 | 2.4.48+dfsg-1ubuntu1.1 |
| ubuntu/openldap | <2.4.49+dfsg-2ubuntu1.2 | 2.4.49+dfsg-2ubuntu1.2 |
| ubuntu/openldap | <2.4.31-1+ | 2.4.31-1+ |
| ubuntu/openldap | <2.4.42+dfsg-2ubuntu3.8 | 2.4.42+dfsg-2ubuntu3.8 |
| Openldap Openldap | <2.4.50 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Debian Debian Linux | =10.0 | |
| openSUSE Leap | =15.1 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =19.10 | |
| Canonical Ubuntu Linux | =20.04 | |
| Netapp Cloud Backup | ||
| Netapp Steelstore Cloud Integrated Storage | ||
| All of | ||
| Netapp H410c Firmware | ||
| Netapp H410c | ||
| All of | ||
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| All of | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| All of | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| All of | ||
| Netapp H300e Firmware | ||
| Netapp H300e | ||
| All of | ||
| Netapp H500e Firmware | ||
| Netapp H500e | ||
| All of | ||
| Netapp H700e Firmware | ||
| Netapp H700e | ||
| All of | ||
| Netapp H410s Firmware | ||
| Netapp H410s | ||
| Broadcom Brocade Fabric Operating System | ||
| Apple Mac OS X | >=10.13.0<10.13.6 | |
| Apple Mac OS X | >=10.14.0<10.14.6 | |
| Apple Mac OS X | >=10.15<10.15.6 | |
| Apple Mac OS X | =10.13.6-security_update_2018-002 | |
| Apple Mac OS X | =10.13.6-security_update_2018-003 | |
| Apple Mac OS X | =10.13.6-security_update_2019-001 | |
| Apple Mac OS X | =10.13.6-security_update_2019-002 | |
| Apple Mac OS X | =10.13.6-security_update_2019-003 | |
| Apple Mac OS X | =10.13.6-security_update_2019-004 | |
| Apple Mac OS X | =10.13.6-security_update_2019-005 | |
| Apple Mac OS X | =10.13.6-security_update_2019-006 | |
| Apple Mac OS X | =10.13.6-security_update_2019-007 | |
| Apple Mac OS X | =10.13.6-security_update_2020-001 | |
| Apple Mac OS X | =10.13.6-security_update_2020-002 | |
| Apple Mac OS X | =10.13.6-security_update_2020-003 | |
| Apple Mac OS X | =10.13.6-supplemental_update | |
| Apple Mac OS X | =10.14.6-security_update_2019-001 | |
| Apple Mac OS X | =10.14.6-security_update_2019-002 | |
| Apple Mac OS X | =10.14.6-security_update_2019-004 | |
| Apple Mac OS X | =10.14.6-security_update_2019-005 | |
| Apple Mac OS X | =10.14.6-security_update_2019-006 | |
| Apple Mac OS X | =10.14.6-security_update_2019-007 | |
| Apple Mac OS X | =10.14.6-security_update_2020-001 | |
| Apple Mac OS X | =10.14.6-security_update_2020-002 | |
| Apple Mac OS X | =10.14.6-security_update_2020-003 | |
| Apple Mac OS X | =10.14.6-security_update_2020-004 | |
| Apple Mac OS X | =10.14.6-security_update_2020-005 | |
| Apple Mac OS X | =10.14.6-security_update_2020-006 | |
| Apple Mac OS X | =10.14.6-security_update_2020-007 | |
| Apple Mac OS X | =10.14.6-security_update_2021-001 | |
| Apple Mac OS X | =10.14.6-security_update_2021-002 | |
| Apple Mac OS X | =10.14.6-security_update_2021-003 | |
| Apple Mac OS X | =10.14.6-supplemental_update | |
| Apple Mac OS X | =10.14.6-supplemental_update_2 | |
| Oracle ZFS Storage Appliance Kit | =8.8 | |
| Oracle Solaris | =10 | |
| Oracle Solaris | =11 | |
| Netapp H410c Firmware | ||
| Netapp H410c | ||
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| Netapp H300e Firmware | ||
| Netapp H300e | ||
| Netapp H500e Firmware | ||
| Netapp H500e | ||
| Netapp H700e Firmware | ||
| Netapp H700e | ||
| Netapp H410s Firmware | ||
| Netapp H410s |
Remedy
https://git.openldap.org/openldap/openldap/-/commit/98464c11df8247d6a11b52e294ba5dd4f0380440 (2.4)
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT211289 (Advisory)
- https://git.openldap.org/openldap/openldap/-/blob/OPENLDAP_REL_ENG_2_4/CHANGES
- https://git.openldap.org/openldap/openldap/-/commit/98464c11df8247d6a11b52e294ba5dd4f0380440
- https://bugs.openldap.org/show_bug.cgi?id=9202
- https://www.debian.org/security/2020/dsa-4666
- https://lists.debian.org/debian-lts-announce/2020/05/msg00001.html
- https://security.netapp.com/advisory/ntap-20200511-0003/
- https://usn.ubuntu.com/4352-2/
- http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00016.html
- https://usn.ubuntu.com/4352-1/
- https://support.apple.com/kb/HT211289
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://launchpad.net/bugs/cve/CVE-2020-12243
- https://git.openldap.org/openldap/openldap/-/commit/d38d48fc8f572dedfb67b9da61a2ba3b125ced91
- https://security-tracker.debian.org/tracker/CVE-2020-12243
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12243
- https://lists.openldap.org/hyperkitty/list/openldap-announce@openldap.org/thread/FUOYA6YCHBXMLANBJMSO22JD2NB22WGC/
- https://ubuntu.com/security/notices/USN-4352-1
- https://ubuntu.com/security/notices/USN-4352-2
- https://nvd.nist.gov/vuln/detail/CVE-2020-12243
- https://git.openldap.org/openldap/openldap/-/commit/98464c11df8247d6a11b52e294ba5dd4f0380440 (2.4)
- https://ubuntu.com/security/CVE-2020-12243
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2020-9927
- CVE-2020-9884
- CVE-2020-9889
- CVE-2020-9888
- CVE-2020-9890
- CVE-2020-9891
- CVE-2020-9928
- CVE-2020-9929
- CVE-2020-9870
- CVE-2020-9866
- CVE-2020-9869
- CVE-2020-9949
- CVE-2020-9934
- CVE-2020-9883
- CVE-2020-9865
- CVE-2020-9900
- CVE-2020-9980
- CVE-2020-9799
- CVE-2020-9913
- CVE-2020-27933
- CVE-2020-11758
- CVE-2020-11759
- CVE-2020-11760
- CVE-2020-11761
- CVE-2020-11762
- CVE-2020-11763
- CVE-2020-11764
- CVE-2020-11765
- CVE-2020-9871
- CVE-2020-9872
- CVE-2020-9874
- CVE-2020-9879
- CVE-2020-9936
- CVE-2020-9937
- CVE-2020-9919
- CVE-2020-9876
- CVE-2020-9873
- CVE-2020-9938
- CVE-2020-9877
- CVE-2020-9875
- CVE-2020-9984
- CVE-2020-9887
- CVE-2020-9908
- CVE-2020-9990
- CVE-2020-9921
- CVE-2019-14899
- CVE-2020-9904
- CVE-2020-9924
- CVE-2020-9892
- CVE-2020-9863
- CVE-2020-9902
- CVE-2020-9905
- CVE-2020-9997
- CVE-2020-9926
- CVE-2020-9994
- CVE-2020-9935
- CVE-2019-19906
- CVE-2020-9920
- CVE-2020-9922
- CVE-2020-9885
- CVE-2020-9878
- CVE-2020-9880
- CVE-2020-9881
- CVE-2020-9882
- CVE-2020-9940
- CVE-2020-9985
- CVE-2020-12243
- CVE-2020-10878
- CVE-2020-12723
- CVE-2014-9512
- CVE-2020-9930
- CVE-2020-9939
- CVE-2020-9864
- CVE-2020-9868
- CVE-2020-9854
- CVE-2020-9901
- CVE-2019-20807
- CVE-2020-9898
- CVE-2020-9918
- CVE-2020-9899
- CVE-2020-9906
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID is CVE-2020-12243.
What software is affected by this vulnerability?
The vulnerability affects Apple macOS Catalina, Apple Mojave, and Apple High Sierra.
What is the severity of CVE-2020-12243?
The severity of CVE-2020-12243 is not specified.
How was this vulnerability addressed?
This vulnerability was addressed with improved checks.
Where can I find more information about this vulnerability?
More information about this vulnerability can be found at the following link: [CVE-2020-12243](https://support.apple.com/en-us/HT211289)
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/apple-support
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/usn-cve
- source/Ubuntu
- agent/weakness
- agent/references
- agent/remedy
- agent/severity
- agent/author
- agent/tags
- agent/event
- agent/description
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- vendor/apple
- canonical/apple macos catalina
- canonical/apple mojave
- canonical/apple high sierra
- package-manager/debian
- package-manager/ubuntu
- vendor/openldap
- canonical/openldap openldap
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- version/debian debian linux/10.0
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.1
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/19.10
- version/canonical ubuntu linux/20.04
- vendor/netapp
- canonical/netapp cloud backup
- canonical/netapp steelstore cloud integrated storage
- canonical/netapp h410c firmware
- canonical/netapp h410c
- canonical/netapp h300s firmware
- canonical/netapp h300s
- canonical/netapp h500s firmware
- canonical/netapp h500s
- canonical/netapp h700s firmware
- canonical/netapp h700s
- canonical/netapp h300e firmware
- canonical/netapp h300e
- canonical/netapp h500e firmware
- canonical/netapp h500e
- canonical/netapp h700e firmware
- canonical/netapp h700e
- canonical/netapp h410s firmware
- canonical/netapp h410s
- vendor/broadcom
- canonical/broadcom brocade fabric operating system
- canonical/apple mac os x
- version/apple mac os x/10.13.0
- version/apple mac os x/10.14.0
- version/apple mac os x/10.15
- version/apple mac os x/10.13.6-security_update_2018-002
- version/apple mac os x/10.13.6-security_update_2018-003
- version/apple mac os x/10.13.6-security_update_2019-001
- version/apple mac os x/10.13.6-security_update_2019-002
- version/apple mac os x/10.13.6-security_update_2019-003
- version/apple mac os x/10.13.6-security_update_2019-004
- version/apple mac os x/10.13.6-security_update_2019-005
- version/apple mac os x/10.13.6-security_update_2019-006
- version/apple mac os x/10.13.6-security_update_2019-007
- version/apple mac os x/10.13.6-security_update_2020-001
- version/apple mac os x/10.13.6-security_update_2020-002
- version/apple mac os x/10.13.6-security_update_2020-003
- version/apple mac os x/10.13.6-supplemental_update
- version/apple mac os x/10.14.6-security_update_2019-001
- version/apple mac os x/10.14.6-security_update_2019-002
- version/apple mac os x/10.14.6-security_update_2019-004
- version/apple mac os x/10.14.6-security_update_2019-005
- version/apple mac os x/10.14.6-security_update_2019-006
- version/apple mac os x/10.14.6-security_update_2019-007
- version/apple mac os x/10.14.6-security_update_2020-001
- version/apple mac os x/10.14.6-security_update_2020-002
- version/apple mac os x/10.14.6-security_update_2020-003
- version/apple mac os x/10.14.6-security_update_2020-004
- version/apple mac os x/10.14.6-security_update_2020-005
- version/apple mac os x/10.14.6-security_update_2020-006
- version/apple mac os x/10.14.6-security_update_2020-007
- version/apple mac os x/10.14.6-security_update_2021-001
- version/apple mac os x/10.14.6-security_update_2021-002
- version/apple mac os x/10.14.6-security_update_2021-003
- version/apple mac os x/10.14.6-supplemental_update
- version/apple mac os x/10.14.6-supplemental_update_2
- vendor/oracle
- canonical/oracle zfs storage appliance kit
- version/oracle zfs storage appliance kit/8.8
- canonical/oracle solaris
- version/oracle solaris/10
- version/oracle solaris/11