VulnerableCode Package Details - pkg:deb/ubuntu/ldb@2:1.1.24-1ubuntu2

Search for packages

Package details: pkg:deb/ubuntu/ldb@2:1.1.24-1ubuntu2

Essentials
History (0)

purl	pkg:deb/ubuntu/ldb@2:1.1.24-1ubuntu2

Next non-vulnerable version	2:2.0.10-0ubuntu0.20.04.3
Latest non-vulnerable version	2:2.0.10-0ubuntu0.20.04.3
Risk	4.0

Vulnerabilities affecting this package (3)

Vulnerability	Summary	Fixed by
VCID-1b1d-tj5f-aaaj Aliases: CVE-2021-20277	A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability.	2:2.0.10-0ubuntu0.20.04.3 Affected by 0 other vulnerabilities.
VCID-9m3f-r1wf-aaas Aliases: CVE-2020-27840	A flaw was found in samba. Spaces used in a string around a domain name (DN), while supposed to be ignored, can cause invalid DN strings with spaces to instead write a zero-byte into out-of-bounds memory, resulting in a crash. The highest threat from this vulnerability is to system availability.	2:2.0.10-0ubuntu0.20.04.3 Affected by 0 other vulnerabilities.
VCID-ymj2-f675-aaaj Aliases: CVE-2019-3824	A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.	2:1.2.3-1ubuntu0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version