CVE-2020-36221: Integer Underflow
First published: Mon Jan 25 2021(Updated: )
An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck).
Credit: CVE-2020-36226 CVE-2020-36229 CVE-2020-36225 CVE-2020-36224 CVE-2020-36223 CVE-2020-36227 CVE-2020-36228 CVE-2020-36221 CVE-2020-36222 CVE-2020-36230 CVE-2020-36226 CVE-2020-36229 CVE-2020-36225 CVE-2020-36224 CVE-2020-36223 CVE-2020-36227 CVE-2020-36228 CVE-2020-36221 CVE-2020-36222 CVE-2020-36230 cve@mitre.org CVE-2020-36226 CVE-2020-36227 CVE-2020-36223 CVE-2020-36224 CVE-2020-36225 CVE-2020-36221 CVE-2020-36228 CVE-2020-36222 CVE-2020-36230 CVE-2020-36229
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/openldap | 2.4.47+dfsg-3+deb10u7 2.4.57+dfsg-3+deb11u1 2.5.13+dfsg-5 | |
| Apple macOS | <11.4 | 11.4 |
| macOS Catalina | ||
| macOS Mojave | ||
| OpenLDAP | <2.4.57 | |
| Debian | =9.0 | |
| Debian | =10.0 | |
| Apple iOS and macOS | >=10.14.0<10.14.6 | |
| Apple iOS and macOS | =10.14.6 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-004 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-005 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-006 | |
| Apple iOS and macOS | =10.14.6-security_update_2019-007 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-001 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-002 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-003 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-004 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-005 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-006 | |
| Apple iOS and macOS | =10.14.6-security_update_2020-007 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-001 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-002 | |
| Apple iOS and macOS | =10.14.6-security_update_2021-003 | |
| Apple iOS and macOS | =10.14.6-supplemental_update | |
| Apple iOS and macOS | =10.14.6-supplemental_update_2 | |
| Apple iOS and macOS | >=11.1<11.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugs.openldap.org/show_bug.cgi?id=9404
- https://git.openldap.org/openldap/openldap/-/commit/38ac838e4150c626bbfa0082b7e2cf3a2bb4df31
- https://bugs.openldap.org/show_bug.cgi?id=9424
- https://git.openldap.org/openldap/openldap/-/commit/58c1748e81c843c5b6e61648d2a4d1d82b47e842
- https://security-tracker.debian.org/tracker/CVE-2020-36221
- https://support.apple.com/en-us/HT212530 (Advisory)
- https://support.apple.com/en-us/HT212531 (Advisory)
- http://seclists.org/fulldisclosure/2021/May/64
- http://seclists.org/fulldisclosure/2021/May/65
- http://seclists.org/fulldisclosure/2021/May/70
- https://git.openldap.org/openldap/openldap/-/tags/OPENLDAP_REL_ENG_2_4_57
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
- https://lists.debian.org/debian-lts-announce/2021/02/msg00005.html
- https://security.netapp.com/advisory/ntap-20210226-0002/
- https://support.apple.com/kb/HT212529
- https://support.apple.com/kb/HT212530
- https://support.apple.com/kb/HT212531
- https://www.debian.org/security/2021/dsa-4845
- https://support.apple.com/en-us/HT212529 (Advisory)
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30678
- CVE-2021-30676
- CVE-2021-30688
- CVE-2021-30669
- CVE-2021-30707
- CVE-2021-30685
- CVE-2021-30672
- CVE-2021-30681
- CVE-2021-30686
- CVE-2021-30733
- CVE-2021-30753
- CVE-2021-30727
- CVE-2021-30724
- CVE-2021-30673
- CVE-2021-30771
- CVE-2021-30755
- CVE-2021-30684
- CVE-2021-30735
- CVE-2021-30697
- CVE-2021-30710
- CVE-2021-30683
- CVE-2021-30687
- CVE-2021-30700
- CVE-2021-30701
- CVE-2021-30705
- CVE-2021-30706
- CVE-2021-30719
- CVE-2021-30728
- CVE-2021-30726
- CVE-2021-30731
- CVE-2021-30740
- CVE-2021-30704
- CVE-2021-30715
- CVE-2021-30736
- CVE-2021-30739
- CVE-2021-30703
- CVE-2021-30680
- CVE-2021-30677
- CVE-2021-30702
- CVE-2021-30696
- CVE-2021-30756
- CVE-2021-30723
- CVE-2021-30691
- CVE-2021-30692
- CVE-2021-30694
- CVE-2021-30725
- CVE-2021-30746
- CVE-2021-30693
- CVE-2021-30695
- CVE-2021-30708
- CVE-2021-30709
- CVE-2021-30679
- CVE-2020-36226
- CVE-2020-36227
- CVE-2020-36223
- CVE-2020-36224
- CVE-2020-36225
- CVE-2020-36221
- CVE-2020-36228
- CVE-2020-36222
- CVE-2020-36230
- CVE-2020-36229
- CVE-2021-30738
- CVE-2021-30751
- CVE-2021-30737
- CVE-2021-30716
- CVE-2021-30717
- CVE-2021-30721
- CVE-2021-30722
- CVE-2021-30712
- CVE-2021-30668
- CVE-2021-30718
- CVE-2021-30671
- CVE-2021-30713
- CVE-2021-30744
- CVE-2021-21779
- CVE-2021-30682
- CVE-2021-30689
- CVE-2021-30749
- CVE-2021-30734
- CVE-2021-30720
- CVE-2021-23841
- CVE-2021-30698
- CVE-2020-29629
- CVE-2021-1884
- CVE-2021-1883
- CVE-2021-30743
- CVE-2021-30819
- CVE-2021-30690
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-36221.
What is the affected software?
The affected software includes macOS Big Sur, Mojave, and Catalina.
How was this issue addressed?
This issue was addressed with improved checks.
What is the severity of CVE-2020-36221?
The severity of CVE-2020-36221 is not specified.
How do I fix CVE-2020-36221?
To fix CVE-2020-36221, make sure you have the latest version of macOS installed.
- collector/security-tracker-debian
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- collector/apple-support
- alias/CVE-2020-36227
- alias/CVE-2020-36223
- alias/CVE-2020-36224
- alias/CVE-2020-36225
- alias/CVE-2020-36221
- alias/CVE-2020-36228
- alias/CVE-2020-36222
- alias/CVE-2020-36230
- alias/CVE-2020-36229
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- package-manager/debian
- vendor/apple
- canonical/apple macos
- canonical/macos catalina
- canonical/macos mojave
- vendor/openldap
- canonical/openldap
- vendor/debian
- canonical/debian
- version/debian/9.0
- version/debian/10.0
- canonical/apple ios and macos
- version/apple ios and macos/10.14.0
- version/apple ios and macos/10.14.6
- version/apple ios and macos/10.14.6-security_update_2019-004
- version/apple ios and macos/10.14.6-security_update_2019-005
- version/apple ios and macos/10.14.6-security_update_2019-006
- version/apple ios and macos/10.14.6-security_update_2019-007
- version/apple ios and macos/10.14.6-security_update_2020-001
- version/apple ios and macos/10.14.6-security_update_2020-002
- version/apple ios and macos/10.14.6-security_update_2020-003
- version/apple ios and macos/10.14.6-security_update_2020-004
- version/apple ios and macos/10.14.6-security_update_2020-005
- version/apple ios and macos/10.14.6-security_update_2020-006
- version/apple ios and macos/10.14.6-security_update_2020-007
- version/apple ios and macos/10.14.6-security_update_2021-001
- version/apple ios and macos/10.14.6-security_update_2021-002
- version/apple ios and macos/10.14.6-security_update_2021-003
- version/apple ios and macos/10.14.6-supplemental_update
- version/apple ios and macos/10.14.6-supplemental_update_2
- version/apple ios and macos/11.1