Univention Bugzilla – Bug 53447
openldap: multiple issues (4.4)
Last modified: 2021-07-05 19:35:49 CEST
Also for 4.4 +++ This bug was initially created as a clone of Bug #53446 +++ * Denial of Service in slapd due to assertion failure in the issuerAndThisUpdateCheck function, triggerable via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime (CVE-2021-27212)
Already fixed in UCS 5.0-0 (2.4.47+dfsg-3+deb10u6) - https://security-tracker.debian.org/tracker/CVE-2021-27212
Patch 99_ITS-9454-fix-issuerAndThisUpdateCheck.quilt has already been imported, built and released with Bug #52747 *** This bug has been marked as a duplicate of bug 52747 ***