vulnerability
Ubuntu: USN-7828-1 (CVE-2025-61912): Python LDAP vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Oct 10, 2025 | Oct 21, 2025 | Oct 30, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Oct 10, 2025
Added
Oct 21, 2025
Modified
Oct 30, 2025
Description
It was discovered that Python LDAP incorrectly handled special characters
in the special character filtering function. A remote attacker could
possibly use this issue to perform LDAP injection attacks.
(CVE-2025-61911)
Arad Inbar discovered that Python LDAP incorrectly escaped NUL character
bytes. An attacker could possibly use this issue to cause a denial of
service. (CVE-2025-61912)
Solutions
ubuntu-pro-upgrade-python-ldapubuntu-pro-upgrade-python3-ldap
References
- CVE-2025-61912
- https://attackerkb.com/topics/CVE-2025-61912
- CWE-116
- CWE-170
- UBUNTU-USN-7828-1
- URL-https://github.com/python-ldap/python-ldap/commit/6ea80326a34ee6093219628d7690bced50c49a3f
- URL-https://github.com/python-ldap/python-ldap/commit/9f5b2effbafdf7af0e7064a7aa42d2739d373bd7
- URL-https://github.com/python-ldap/python-ldap/releases/tag/python-ldap-3.4.5
- URL-https://github.com/python-ldap/python-ldap/security/advisories/GHSA-p34h-wq7j-h5v6
- URL-https://ubuntu.com/security/notices/USN-7828-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-61912
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.