An update for openldap is now available for openEuler-20.03-LTS and openEuler-20.03-LTS-SP1 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2021-1119 Final 1.0 1.0 2021-04-07 Initial 2021-04-07 2021-04-07 openEuler SA Tool V1.0 2021-04-07 openldap security update An update for openldap is now available for openEuler-20.03-LTS and openEuler-20.03-LTS-SP1. OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools. LDAP is a set of protocols for accessing directory services (usually phone book style information, but other information is possible) over the Internet, similar to the way DNS (Domain Name System) information is propagated over the Internet. The openldap package contains configuration files, libraries, and documentation for OpenLDAP. Security Fix(es): In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.(CVE-2021-27212) An update for openldap is now available for openEuler-20.03-LTS and openEuler-20.03-LTS-SP1. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High openldap https://openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2021-1119 https://openeuler.org/en/security/cve/detail.html?id=CVE-2021-27212 https://nvd.nist.gov/vuln/detail/CVE-2021-27212 openEuler-20.03-LTS openEuler-20.03-LTS-SP1 openldap-2.4.50-4.oe1.aarch64.rpm openldap-devel-2.4.50-4.oe1.aarch64.rpm openldap-debuginfo-2.4.50-4.oe1.aarch64.rpm openldap-debugsource-2.4.50-4.oe1.aarch64.rpm openldap-clients-2.4.50-4.oe1.aarch64.rpm openldap-servers-2.4.50-4.oe1.aarch64.rpm openldap-servers-2.4.50-4.oe1.aarch64.rpm openldap-2.4.50-4.oe1.aarch64.rpm openldap-debugsource-2.4.50-4.oe1.aarch64.rpm openldap-clients-2.4.50-4.oe1.aarch64.rpm openldap-devel-2.4.50-4.oe1.aarch64.rpm openldap-debuginfo-2.4.50-4.oe1.aarch64.rpm openldap-help-2.4.50-4.oe1.noarch.rpm openldap-help-2.4.50-4.oe1.noarch.rpm openldap-2.4.50-4.oe1.src.rpm openldap-2.4.50-4.oe1.src.rpm openldap-servers-2.4.50-4.oe1.x86_64.rpm openldap-2.4.50-4.oe1.x86_64.rpm openldap-debuginfo-2.4.50-4.oe1.x86_64.rpm openldap-debugsource-2.4.50-4.oe1.x86_64.rpm openldap-clients-2.4.50-4.oe1.x86_64.rpm openldap-devel-2.4.50-4.oe1.x86_64.rpm openldap-2.4.50-4.oe1.x86_64.rpm openldap-devel-2.4.50-4.oe1.x86_64.rpm openldap-clients-2.4.50-4.oe1.x86_64.rpm openldap-debuginfo-2.4.50-4.oe1.x86_64.rpm openldap-servers-2.4.50-4.oe1.x86_64.rpm openldap-debugsource-2.4.50-4.oe1.x86_64.rpm In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime. 2021-04-07 CVE-2021-27212 openEuler-20.03-LTS openEuler-20.03-LTS-SP1 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H openldap security update 2021-04-07 https://openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2021-1119