What the vulnerability does

01Description

A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request, causing a Denial of Service.

Key dates

02Disclosure timeline

December 8, 2020 CVE published
August 4, 2024 Record updated