Source: openldap Version: 2.4.47+dfsg-3 Severity: important Tags: security upstream Forwarded: https://openldap.org/its/?findid=9038
Hi, The following vulnerability was published for openldap, this is for tracking, as the issue is already know to the maintainers. CVE-2019-13057[0]: openldap: rootdn of any db can assert any identity If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2019-13057 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13057 [1] https://openldap.org/its/?findid=9038 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
