A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25710
Reference (s):
- https://security.netapp.com/advisory/ntap-20210716-0003/
- DEBIAN:DSA-4792
- URL: https://www.debian.org/security/2020/dsa-4792
- https://bugzilla.redhat.com/show_bug.cgi?id=1899678
- URL: https://bugzilla.redhat.com/show_bug.cgi?id=1899678