USN-4888-1 fixed several vulnerabilities in ldb. This update provides the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
Douglas Bagnall discovered that ldb, when used with Samba, incorrectly handled certain LDAP attributes. A remote attacker could possibly use this issue to cause the LDAP server to crash, resulting in a denial of service. (CVE-2021-20277)
Douglas Bagnall discovered that ldb, when used with Samba, incorrectly handled certain DN strings. A remote attacker could use this issue to cause the LDAP server to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2020-27840)
{ "availability": "No subscription required", "binaries": [ { "ldb-tools": "1:1.1.24-0ubuntu0.14.04.2+esm1", "python-ldb-dev": "1:1.1.24-0ubuntu0.14.04.2+esm1", "libldb-dev": "1:1.1.24-0ubuntu0.14.04.2+esm1", "libldb1": "1:1.1.24-0ubuntu0.14.04.2+esm1", "python-ldb": "1:1.1.24-0ubuntu0.14.04.2+esm1" } ] }