OESA-2023-1334

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1334
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2023-1334.json
JSON Data
https://api.osv.dev/v1/vulns/OESA-2023-1334
Upstream
Published
2023-06-10T11:05:22Z
Modified
2025-09-03T06:19:08.267852Z
Summary
openldap security update
Details

OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools. LDAP is a set of protocols for accessing directory services (usually phone book style information, but other information is possible) over the Internet, similar to the way DNS (Domain Name System) information is propagated over the Internet. The openldap package contains configuration files, libraries, and documentation for OpenLDAP.

Security Fix(es):

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in bermemallocx() function.(CVE-2023-2953)

Database specific 
{
    "severity": "High"
}
References

Affected packages

openEuler:20.03-LTS-SP1 / openldap

Package

Name
openldap
Purl
pkg:rpm/openEuler/openldap&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.50-8.oe1

Ecosystem specific 

{
    "aarch64": [
        "openldap-clients-2.4.50-8.oe1.aarch64.rpm",
        "openldap-debugsource-2.4.50-8.oe1.aarch64.rpm",
        "openldap-debuginfo-2.4.50-8.oe1.aarch64.rpm",
        "openldap-devel-2.4.50-8.oe1.aarch64.rpm",
        "openldap-2.4.50-8.oe1.aarch64.rpm",
        "openldap-servers-2.4.50-8.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "openldap-debugsource-2.4.50-8.oe1.x86_64.rpm",
        "openldap-clients-2.4.50-8.oe1.x86_64.rpm",
        "openldap-2.4.50-8.oe1.x86_64.rpm",
        "openldap-devel-2.4.50-8.oe1.x86_64.rpm",
        "openldap-servers-2.4.50-8.oe1.x86_64.rpm",
        "openldap-debuginfo-2.4.50-8.oe1.x86_64.rpm"
    ],
    "src": [
        "openldap-2.4.50-8.oe1.src.rpm"
    ],
    "noarch": [
        "openldap-help-2.4.50-8.oe1.noarch.rpm"
    ]
}

openEuler:20.03-LTS-SP3 / openldap

Package

Name
openldap
Purl
pkg:rpm/openEuler/openldap&distro=openEuler-20.03-LTS-SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.50-8.oe1

Ecosystem specific 

{
    "aarch64": [
        "openldap-clients-2.4.50-8.oe1.aarch64.rpm",
        "openldap-servers-2.4.50-8.oe1.aarch64.rpm",
        "openldap-2.4.50-8.oe1.aarch64.rpm",
        "openldap-debugsource-2.4.50-8.oe1.aarch64.rpm",
        "openldap-devel-2.4.50-8.oe1.aarch64.rpm",
        "openldap-debuginfo-2.4.50-8.oe1.aarch64.rpm"
    ],
    "x86_64": [
        "openldap-debugsource-2.4.50-8.oe1.x86_64.rpm",
        "openldap-servers-2.4.50-8.oe1.x86_64.rpm",
        "openldap-devel-2.4.50-8.oe1.x86_64.rpm",
        "openldap-2.4.50-8.oe1.x86_64.rpm",
        "openldap-debuginfo-2.4.50-8.oe1.x86_64.rpm",
        "openldap-clients-2.4.50-8.oe1.x86_64.rpm"
    ],
    "src": [
        "openldap-2.4.50-8.oe1.src.rpm"
    ],
    "noarch": [
        "openldap-help-2.4.50-8.oe1.noarch.rpm"
    ]
}

openEuler:22.03-LTS / openldap

Package

Name
openldap
Purl
pkg:rpm/openEuler/openldap&distro=openEuler-22.03-LTS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.6.0-6.oe2203sp1

Ecosystem specific 

{
    "aarch64": [
        "openldap-devel-2.6.0-5.oe2203.aarch64.rpm",
        "openldap-2.6.0-5.oe2203.aarch64.rpm",
        "openldap-debugsource-2.6.0-5.oe2203.aarch64.rpm",
        "openldap-servers-2.6.0-5.oe2203.aarch64.rpm",
        "openldap-debuginfo-2.6.0-5.oe2203.aarch64.rpm",
        "openldap-clients-2.6.0-5.oe2203.aarch64.rpm",
        "openldap-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-clients-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-devel-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-servers-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-debugsource-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-debuginfo-2.6.0-6.oe2203sp1.aarch64.rpm"
    ],
    "x86_64": [
        "openldap-debuginfo-2.6.0-5.oe2203.x86_64.rpm",
        "openldap-devel-2.6.0-5.oe2203.x86_64.rpm",
        "openldap-clients-2.6.0-5.oe2203.x86_64.rpm",
        "openldap-servers-2.6.0-5.oe2203.x86_64.rpm",
        "openldap-debugsource-2.6.0-5.oe2203.x86_64.rpm",
        "openldap-2.6.0-5.oe2203.x86_64.rpm",
        "openldap-debuginfo-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-debugsource-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-clients-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-devel-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-servers-2.6.0-6.oe2203sp1.x86_64.rpm"
    ],
    "src": [
        "openldap-2.6.0-5.oe2203.src.rpm",
        "openldap-2.6.0-6.oe2203sp1.src.rpm"
    ],
    "noarch": [
        "openldap-help-2.6.0-5.oe2203.noarch.rpm",
        "openldap-help-2.6.0-6.oe2203sp1.noarch.rpm"
    ]
}

openEuler:22.03-LTS-SP1 / openldap

Package

Name
openldap
Purl
pkg:rpm/openEuler/openldap&distro=openEuler-22.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.6.0-6.oe2203sp1

Ecosystem specific 

{
    "aarch64": [
        "openldap-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-clients-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-devel-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-servers-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-debugsource-2.6.0-6.oe2203sp1.aarch64.rpm",
        "openldap-debuginfo-2.6.0-6.oe2203sp1.aarch64.rpm"
    ],
    "x86_64": [
        "openldap-debuginfo-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-debugsource-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-clients-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-devel-2.6.0-6.oe2203sp1.x86_64.rpm",
        "openldap-servers-2.6.0-6.oe2203sp1.x86_64.rpm"
    ],
    "src": [
        "openldap-2.6.0-6.oe2203sp1.src.rpm"
    ],
    "noarch": [
        "openldap-help-2.6.0-6.oe2203sp1.noarch.rpm"
    ]
}