A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25692
Reference (s):
- https://security.netapp.com/advisory/ntap-20210108-0006/
- https://bugzilla.redhat.com/show_bug.cgi?id=1894567
- URL: https://bugzilla.redhat.com/show_bug.cgi?id=1894567