VDB

GCVE-VVD-MAGEIA-2020-200

GCVE-VVD-MAGEIA-2020-200
Advisory Published
Vulnetix · Advisory published September 2, 2020
Updated openldap packages fix security vulnerabilities: When both the nops module and the member of overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation (CVE-2017-17740). In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash) (CVE-2020-12243). The nops overlay has been dropped from the package, fixing CVE-2017-17740. The openldap package has been updated to version 2.4.50, fixing CVE-2020-12243 and several other bugs.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiaopenldap0 (affected), 2.4.50-1.1.mga7 (unaffected), 0 (affected), 2.4.50-1.1.mga7 (unaffected)
Mageiarspamd0 (affected), 1.8.3-1.1.mga7 (unaffected)

Aliases

CVE-2017-17740

Transitive aliases

EUVD-2017-8892VVD-GENTOO-2017-641576GHSA-h7vm-9jwq-6c9r

References

Updated openldap packages fix security vulnerabilities
advisory
Updated openldap packages fix security vulnerabilities
advisory
Updated openldap packages fix security vulnerabilities
issue
Updated openldap packages fix security vulnerabilities
issue
Updated openldap packages fix security vulnerabilities
issue
Updated openldap packages fix security vulnerabilities
issue
Updated openldap packages fix security vulnerabilities
issue
Updated openldap packages fix security vulnerabilities
issue
Updated rspamd package fixes some misconfiguration
advisory
Updated rspamd package fixes some misconfiguration
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›