PublicDateAtUSN: 2021-02-14 03:15:00 UTC
Candidate: CVE-2021-27212
PublicDate: 2021-02-14 03:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27212
 https://ubuntu.com/security/notices/USN-4744-1
Description:
 In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion
 failure in slapd can occur in the issuerAndThisUpdateCheck function via a
 crafted packet, resulting in a denial of service (daemon exit) via a short
 timestamp. This is related to schema_init.c and checkTime.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
 https://bugs.openldap.org/show_bug.cgi?id=9454
Priority: medium
Discovered-by: Pasi Saarinen
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_openldap:
 upstream: https://git.openldap.org/openldap/openldap/-/commit/3539fc33212b528c56b716584f2c2994af7c30b0 (trunk)
 upstream: https://git.openldap.org/openldap/openldap/-/commit/9badb73425a67768c09bcaed1a9c26c684af6c30 (REL_ENG 2.4.x)
upstream_openldap: released (2.4.57+dfsg-2)
precise/esm_openldap: ignored (end of ESM support, was needed)
trusty_openldap: ignored (out of standard support)
trusty/esm_openldap: needed
xenial_openldap: released (2.4.42+dfsg-2ubuntu3.13)
esm-infra/xenial_openldap: released (2.4.42+dfsg-2ubuntu3.13)
bionic_openldap: released (2.4.45+dfsg-1ubuntu1.10)
focal_openldap: released (2.4.49+dfsg-2ubuntu1.7)
groovy_openldap: released (2.4.53+dfsg-1ubuntu1.4)
hirsute_openldap: released (2.4.57+dfsg-2ubuntu1)
impish_openldap: released (2.4.57+dfsg-2ubuntu1)
jammy_openldap: released (2.4.57+dfsg-2ubuntu1)
devel_openldap: released (2.4.57+dfsg-2ubuntu1)