VulnerableCode Package Details - pkg:deb/debian/ldb@2:1.1.20-0%2Bdeb8u1

Search for packages

Package details: pkg:deb/debian/ldb@2:1.1.20-0%2Bdeb8u1

Essentials
History (52)

purl	pkg:deb/debian/ldb@2:1.1.20-0%2Bdeb8u1

Next non-vulnerable version	2:2.2.3-2~deb11u2
Latest non-vulnerable version	2:2.2.3-2~deb11u2
Risk	4.0

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-1b1d-tj5f-aaaj Aliases: CVE-2021-20277	A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability.	2:1.5.1+really1.4.6-3+deb10u1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2:2.2.3-2~deb11u2 Affected by 0 other vulnerabilities.
VCID-9m3f-r1wf-aaas Aliases: CVE-2020-27840	A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds memory, resulting in a crash. The highest threat from this vulnerability is to system availability.	2:1.5.1+really1.4.6-3+deb10u1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2:2.2.3-2~deb11u2 Affected by 0 other vulnerabilities.
VCID-avrs-ycrw-aaan Aliases: CVE-2015-3223	The ldb_wildcard_compare function in ldb_match.c in ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles certain zero values, which allows remote attackers to cause a denial of service (infinite loop) via crafted packets.	2:1.1.27-1+deb9u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sxbn-732u-aaaa Aliases: CVE-2020-10730	A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped with the libldb package. This flaw allows an authenticated user to possibly trigger a use-after-free or NULL pointer dereference. The highest threat from this vulnerability is to system availability.	2:1.5.1+really1.4.6-3+deb10u1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2:2.2.3-2~deb11u2 Affected by 0 other vulnerabilities.
VCID-tk3b-md55-aaaq Aliases: CVE-2015-5330	ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive information from daemon heap memory by sending crafted packets and then reading (1) an error message or (2) a database value.	2:1.1.27-1+deb9u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-xb1w-pq52-aaaj Aliases: CVE-2021-3670	MaxQueryDuration not honoured in Samba AD DC LDAP	2:2.2.3-2~deb11u2 Affected by 0 other vulnerabilities.
VCID-ymj2-f675-aaaj Aliases: CVE-2019-3824	A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.	2:1.1.27-1+deb9u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2:1.5.1+really1.4.6-3+deb10u1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T16:53:15.888535+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T16:50:00.957736+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T15:58:58.893491+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:44:43.762820+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:14:29.176216+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:35:18.746585+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T10:39:08.071183+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.3
2025-06-21T04:11:23.477490+00:00	Debian Oval Importer	Affected by	VCID-xb1w-pq52-aaaj	None	36.1.3
2025-06-20T23:58:15.586625+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	None	36.1.3
2025-06-20T22:53:59.218669+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	None	36.1.3
2025-06-20T21:27:49.069497+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	None	36.1.3
2025-06-20T21:15:16.898187+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	None	36.1.3
2025-06-20T20:54:31.724798+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	None	36.1.3
2025-06-20T19:57:38.198101+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	None	36.1.3
2025-06-08T13:17:01.303804+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:44:27.840679+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:59:01.494795+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T09:38:23.031509+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T09:35:11.564069+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T08:52:17.483050+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:38:02.483755+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:07:51.309084+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:29:25.311965+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T04:19:13.675130+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.0
2025-06-07T21:47:13.644059+00:00	Debian Oval Importer	Affected by	VCID-xb1w-pq52-aaaj	None	36.1.0
2025-06-07T17:21:09.344615+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	None	36.1.0
2025-06-07T16:17:19.106239+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	None	36.1.0
2025-06-07T14:50:28.904516+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	None	36.1.0
2025-06-07T14:39:24.408421+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	None	36.1.0
2025-06-07T14:23:14.249494+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	None	36.1.0
2025-06-07T13:47:17.984175+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	None	36.1.0
2025-04-12T22:16:32.505548+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T21:20:07.929939+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T21:16:38.052940+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:15:28.312383+00:00	Debian Oval Importer	Affected by	VCID-xb1w-pq52-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:04:59.921630+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:31:20.160647+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:44:15.980966+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-08T08:10:47.635445+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T08:07:33.592107+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T07:23:50.283931+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T06:10:35.113338+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:40:27.253353+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:01:43.177707+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T02:48:40.205549+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.0.0
2025-04-07T20:17:06.274262+00:00	Debian Oval Importer	Affected by	VCID-xb1w-pq52-aaaj	None	36.0.0
2025-04-07T15:55:12.138338+00:00	Debian Oval Importer	Affected by	VCID-avrs-ycrw-aaan	None	36.0.0
2025-04-07T14:48:51.910821+00:00	Debian Oval Importer	Affected by	VCID-1b1d-tj5f-aaaj	None	36.0.0
2025-04-07T13:22:28.784211+00:00	Debian Oval Importer	Affected by	VCID-9m3f-r1wf-aaas	None	36.0.0
2025-04-07T13:11:30.151519+00:00	Debian Oval Importer	Affected by	VCID-tk3b-md55-aaaq	None	36.0.0
2025-04-07T12:55:48.300781+00:00	Debian Oval Importer	Affected by	VCID-sxbn-732u-aaaa	None	36.0.0
2025-04-07T12:22:23.627471+00:00	Debian Oval Importer	Affected by	VCID-ymj2-f675-aaaj	None	36.0.0