DEBIAN-CVE-2020-36224

DEBIAN-CVE-2020-36224 PUBLISHED CVSS 7.5 HIGH

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service.

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Debian:14	openldap	0, 0, 0
Debian:13	openldap	0, 0, 0
Debian:11	openldap	0, 0, 0
Debian:12	openldap	0, 0, 0

Timeline

Jan 26, 2021 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2020-36224 advisory

Open in Interactive Console →