VDB
ALPINE-CVE-2020-12243
ALPINE-CVE-2020-12243
PUBLISHED
CVSS 7.5 HIGH
In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.21 | openldap | 2.4.42-r1, 2.4.43-r0, 2.4.44-r0 |
| Alpine:v3.16 | openldap | 2.4.40-r4, 2.4.41-r0, 2.4.42-r0 |
| Alpine:v3.22 | openldap | 2.4.45-r0, 2.4.45-r1, 2.4.25-r1 |
| Alpine:v3.9 | openldap | 2.4.18-r0, 0, 0 |
| Alpine:v3.8 | openldap | 0, 0, 2.4.48-r0 |
| Alpine:v3.17 | openldap | 2.4.28-r2, 2.4.18-r0, 2.4.11-r0 |
| Alpine:v3.15 | openldap | 0, 2.4.11-r0, 2.4.16-r0 |
| Alpine:v3.24 | openldap | 0, 0 |
| Alpine:v3.10 | openldap | 2.4.40-r3, 2.4.40-r4, 2.4.40-r5 |
| Alpine:v3.14 | openldap | 2.4.19-r2, 2.4.49-r1, 2.4.36-r2 |
| Alpine:v3.13 | openldap | 2.4.19-r4, 2.4.19-r5, 2.4.21-r0 |
| Alpine:v3.20 | openldap | 0, 2.4.21-r3, 2.4.21-r2 |
| Alpine:v3.11 | openldap | 2.4.40-r0, 0, 0 |
| Alpine:v3.23 | openldap | 2.4.46-r0, 2.4.46-r1, 2.4.47-r2 |
| Alpine:v3.12 | openldap | 2.4.11-r0, 2.4.18-r0, 2.4.19-r0 |
| Alpine:v3.18 | openldap | 0, 2.4.34-r0, 2.4.24-r0 |
| Alpine:v3.19 | openldap | 0, 2.4.24-r2, 2.4.24-r1 |
Timeline
- Apr 28, 2020 CVE Published
- Apr 30, 2026 Distribution Patch
- Jun 15, 2026 CVE Updated