DEBIAN-CVE-2011-1024

DEBIAN-CVE-2011-1024 PUBLISHED

chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote authenticated users to bypass external-program authentication by sending an invalid password to a slave server.

Affected Products

Vendor	Product	Versions
Debian:14	openldap	0, 0, 0
Debian:13	openldap	0, 0, 0
Debian:11	openldap	0, 0, 0
Debian:12	openldap	0, 0, 0

Timeline

Mar 20, 2011 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2011-1024 advisory

Open in Interactive Console →