CVE-2021-27212
First published: Sun Feb 14 2021(Updated: )
In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/openldap | 2.4.47+dfsg-3+deb10u7 2.4.57+dfsg-3+deb11u1 2.5.13+dfsg-5 | |
| OpenLDAP OpenLDAP | <=2.4.57 | |
| OpenLDAP OpenLDAP | =2.5.0-alpha | |
| OpenLDAP OpenLDAP | =2.5.1-alpha | |
| Debian Debian Linux | =9.0 | |
| Debian Debian Linux | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugs.openldap.org/show_bug.cgi?id=9454
- https://git.openldap.org/openldap/openldap/-/commit/3539fc33212b528c56b716584f2c2994af7c30b0
- https://git.openldap.org/openldap/openldap/-/commit/9badb73425a67768c09bcaed1a9c26c684af6c30
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
- https://lists.debian.org/debian-lts-announce/2021/02/msg00035.html
- https://security.netapp.com/advisory/ntap-20210319-0005/
- https://www.debian.org/security/2021/dsa-4860
- https://security-tracker.debian.org/tracker/CVE-2021-27212
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
Frequently Asked Questions
What is CVE-2021-27212?
CVE-2021-27212 is a vulnerability in OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha that can lead to a denial of service via a crafted packet.
How severe is CVE-2021-27212?
CVE-2021-27212 has a severity rating of 7.5 (high).
Which software versions are affected by CVE-2021-27212?
OpenLDAP versions 2.4.57 and 2.5.x through 2.5.1alpha are affected by CVE-2021-27212.
How can I fix CVE-2021-27212?
To fix CVE-2021-27212, you should upgrade to OpenLDAP version 2.4.58 or 2.5.2 (or a later stable release).
Where can I find more information about CVE-2021-27212?
You can find more information about CVE-2021-27212 on the OpenLDAP bug tracker and the corresponding Git commits.
- collector/security-tracker-debian
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/references
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/openldap
- canonical/openldap openldap
- version/openldap openldap/2.4.57
- version/openldap openldap/2.5.0-alpha
- version/openldap openldap/2.5.1-alpha
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/9.0
- version/debian debian linux/10.0