- CVE-2019-13565: SASL session encryption SSF not reset on new connection, allowing downgrade - CVE-2020-12243: slapd crash via deeply nested LDAP search filter boolean expressions - CVE-2020-25692: NULL pointer dereference in slapd during modRDN request - CVE-2020-25709: slapd assertion failure via crafted certificate list validation - CVE-2020-25710: slapd assertion failure in obsolete csnNormalize23 - CVE-2020-36221: slapd integer underflow crash in Certificate Exact Assertion processing - CVE-2020-36222: slapd assertion failure in saslAuthzTo validation - CVE-2020-36223: slapd double free crash in Values Return Filter control handling - CVE-2020-36224: slapd invalid pointer free and crash in saslAuthzTo processing - CVE-2020-36225: slapd double free crash in saslAuthzTo processing - CVE-2020-36226: slapd memch->bv_len miscalculation and crash in saslAuthzTo processing - CVE-2020-36227: slapd infinite loop via cancel_extop Cancel operation - CVE-2020-36228: slapd integer underflow crash in Certificate List Exact Assertion processing - CVE-2020-36229: slapd crash in X.509 DN parsing ad_keystring via ldap_X509dn2bv - CVE-2020-36230: slapd assertion failure in X.509 DN parsing ber_next_element in decode.c