• CVE-2020-36230

    OL CVE Issue Summary:

    A flaw was discovered in OpenLDAP before 2.4.57 leading to integer underflow in slapd in the `serialNumberAndIssuerCheck` and`serialNumberAndIssuerSerialCheck` functions in `schema_init.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to assertion failures in slapd in the `authzPrettyNormal` function in `saslauthz.c`,resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to a crash in slapd in the `slap_free_ctrls` function in `controls.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to invalid pointer access in slapd in the `authzPrettyNormal` function in `saslauthz.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free in slapd in the `dnPretty` function in `dn.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to a crash in slapd in the `slap_parse_user` function in `saslauthz.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to an integer underflow in slapd in the `certificateListExactNormalize` function in`schema_init.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to a crash in slapd in the `issuerAndThisUpdateCheck` function in `schema_init.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to a segmentation fault in slapd in the `slap_bv2undef_ad` function in `ad.c`, resulting in denial of service.

    A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the X.509 DN parsing in `decode.c` `ber_next_element`, resulting in denial of service.

    CVE-2020-36230
    CentOS 7
    openldap-2.4.44-25_ol001.el7_9
    7.5

  • CVE-2016-2381

    OL CVE Issue Summary:

    Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

    CVE-2016-2381
    CentOS 7
    perl-5.16.3-299_ol003.el7
    7.5

  • Monitoring Spring Boot Applications in a Microservices World

    Learn how to effectively monitor Spring Boot applications. This guide covers key metrics, essential tools like Actuator and Micrometer, and best practices.

  • The Spring Framework Lifecycle Challenge: Move Fast or Stay Stable?

    Find out how changes to the Spring Framework lifecycle and support model could impact your organization. Get guidance on planning Spring Framework upgrades and explore LTS options.

  • Planning Your Next Spring Boot Upgrade

    Planning your next Spring Boot upgrade or migration? Learn best practices, common challenges, and key steps to ensure a smooth, secure transition for your apps.

  • Managing End-of-Life Spring Vulnerabilities

    Learn about critical Spring vulnerabilities in EOL Spring Boot and Framework versions and how to protect your applications from CVE exploits if you can't upgrade immediately.

  • About Perforce OpenLogic

    We believe in the transformative power of free open source software. It enables anyone to innovate. For more than two decades, OpenLogic has provided expert open source support and enterprise services to leading global innovators. Learn more about our story.

  • Taking an Open Source Approach to Big Data Management

    This white paper explains how enterprises can save money and have more data sovereignty by open sourcing their Big Data infrastructure instead of paying for a proprietary solution like the Cloudera Data Platform. Download your free copy today.

  • Spring LTS

  • Exploring Kafka 4: Changes and Upgrade Considerations

    Kafka 4 is here. Get details on the major changes, removals, and what to consider as you plan your Kafka upgrade.