|
198091
|
7.5 |
HIGH
Network
|
openldap
debian
apple
|
openldap
debian_linux
macos
|
A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial of service.
|
CWE-415
Double Free
|
CVE-2020-36225
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198092
|
7.5 |
HIGH
Network
|
openldap
debian
apple
|
openldap
debian_linux
mac_os_x
macos
|
A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service.
|
CWE-763
Release of Invalid Pointer or Reference
|
CVE-2020-36224
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198093
|
7.5 |
HIGH
Network
|
openldap
debian
apple
|
openldap
debian_linux
mac_os_x
macos
|
A flaw was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Values Return Filter control handling, resulting in denial of service (double free and out-of-bounds read).
|
CWE-125
CWE-415
Out-of-bounds Read
Double Free
|
CVE-2020-36223
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198094
|
7.5 |
HIGH
Network
|
openldap
debian
apple
|
openldap
debian_linux
mac_os_x
macos
|
A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service.
|
CWE-617
Reachable Assertion
|
CVE-2020-36222
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198095
|
7.5 |
HIGH
Network
|
openldap
debian
apple
|
openldap
debian_linux
mac_os_x
macos
|
An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssu…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2020-36221
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198096
|
5.9 |
MEDIUM
Network
|
va-ts_project
|
va-ts
|
An issue was discovered in the va-ts crate before 0.0.4 for Rust. Because Demuxer<T> omits a required T: Send bound, a data race and memory corruption can occur.
|
CWE-787
CWE-662
CWE-667
Out-of-bounds Write
Improper Synchronization
Improper Locking
|
CVE-2020-36220
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198097
|
5.9 |
MEDIUM
Network
|
atomic-option_project
|
atomic-option
|
An issue was discovered in the atomic-option crate through 2020-10-31 for Rust. Because AtomicOption<T> implements Sync unconditionally, a data race can occur.
|
NVD-CWE-noinfo
|
CVE-2020-36219
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198098
|
5.9 |
MEDIUM
Network
|
nonpolynomial
|
buttplug
|
An issue was discovered in the buttplug crate before 1.0.4 for Rust. ButtplugFutureStateShared does not properly consider (!Send|!Sync) objects, leading to a data race.
|
NVD-CWE-noinfo
|
CVE-2020-36218
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198099
|
5.9 |
MEDIUM
Network
|
may_queue_project
|
may_queue
|
An issue was discovered in the may_queue crate through 2020-11-10 for Rust. Because Queue does not have bounds on its Send trait or Sync trait, memory corruption can occur.
|
CWE-787
CWE-662
Out-of-bounds Write
Improper Synchronization
|
CVE-2020-36217
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198100
|
5.9 |
MEDIUM
Network
|
petabi
|
eventio
|
An issue was discovered in Input<R> in the eventio crate before 0.5.1 for Rust. Because a non-Send type can be sent to a different thread, a data race and memory corruption can occur.
|
CWE-787
CWE-662
Out-of-bounds Write
Improper Synchronization
|
CVE-2020-36216
|
2024-11-21 14:29 |
2021-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
