High severity7.5NVD Advisory· Published Dec 18, 2017· Updated Jun 17, 2026
CVE-2017-17740
CVE-2017-17740
Description
contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
32- cpe:2.3:a:oracle:blockchain_platform:*:*:*:*:*:*:*:*Range: <21.1.2
- osv-coords26 versionspkg:rpm/opensuse/openldap2&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/openldap2&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/openldap2-client&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/openldap2-client&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/openldap2-client&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/openldap2-client&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2012pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP1pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/openldap2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4
< 2.4.46-lp150.13.1+ 25 more
- (no CPE)range: < 2.4.46-lp150.13.1
- (no CPE)range: < 2.4.46-lp151.10.3.1
- (no CPE)range: < 2.4.41-18.24.9.1
- (no CPE)range: < 2.4.41-18.24.9.1
- (no CPE)range: < 2.4.41-18.24.9.1
- (no CPE)range: < 2.4.41-18.24.9.1
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.46-9.19.2
- (no CPE)range: < 2.4.46-9.19.2
- (no CPE)range: < 2.4.46-9.19.2
- (no CPE)range: < 2.4.46-9.19.2
- (no CPE)range: < 2.4.41-18.24.9.7
- (no CPE)range: < 2.4.46-9.19.2
- (no CPE)range: < 2.4.46-9.19.2
- (no CPE)range: < 2.4.41-18.24.9.7
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.41-18.24.9.7
- (no CPE)range: < 2.4.41-18.24.9.7
- (no CPE)range: < 2.4.41-18.24.9.7
- (no CPE)range: < 2.4.41-18.24.9.7
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.41-18.43.1
- (no CPE)range: < 2.4.41-18.43.1
Patches
Vulnerability mechanics
References
5- www.oracle.com/security-alerts/cpuapr2022.htmlnvdPatchThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.htmlnvdMailing ListThird Party Advisory
- www.openldap.org/its/index.cgi/IncomingnvdIssue TrackingVendor Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
News mentions
0No linked articles in our index yet.