N/A

An off-by-one error leading to a crash was discovered in openldap 2.4 when processing DNS SRV messages. If slapd was configured to use the dnssrv backend, an attacker could crash the service with crafted DNS responses.

N/A

N/A

OpenLDAP 数字错误漏洞

OpenLDAP是美国OpenLDAP基金会的一个轻型目录访问协议（LDAP）的开源实现。 OpenLDAP 2.4版本中存在数字错误漏洞。远程攻击者可借助特制DNS响应利用该漏洞导致拒绝服务（服务崩溃）。

N/A

N/A