In LemonLDAP::NG (aka lemonldap-ng) through 2.0.8, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::LDAPS module for Perl is used.
The product does not validate, or incorrectly validates, a certificate.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Lemonldap::ng | Lemonldap-ng | * | 2.0.8 (including) |
Lemonldap-ng | Ubuntu | bionic | * |
Lemonldap-ng | Ubuntu | groovy | * |
Lemonldap-ng | Ubuntu | trusty | * |
Lemonldap-ng | Ubuntu | upstream | * |
Lemonldap-ng | Ubuntu | xenial | * |