CVE-2026-22185
OpenLDAP <= 2.6.10 LMDB mdb_load Heap Buffer Underflow in readline()
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
OpenLDAP Lightning Memory-Mapped Database (LMDB) versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underflow in the readline() function of mdb_load. When processing malformed input containing an embedded NUL byte, an unsigned offset calculation can underflow and cause an out-of-bounds read of one byte before the allocated heap buffer. This can cause mdb_load to crash, leading to a limited denial-of-service condition.
| CWE | CWE-125 CWE-191 |
| Vendor | openldap foundation |
| Product | openldap |
| Published | Jan 7, 2026 |
| Last Updated | Mar 5, 2026 |
Stay Ahead of the Next One
Get instant alerts for openldap foundation openldap
Be the first to know when new unknown vulnerabilities affecting openldap foundation openldap are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
OpenLDAP Foundation / OpenLDAP
0.9.14 < 0.9.34
References
seclists.org: https://seclists.org/fulldisclosure/2026/Jan/5 seclists.org: https://seclists.org/fulldisclosure/2026/Jan/8 openldap.org: https://www.openldap.org/ vulncheck.com: https://www.vulncheck.com/advisories/openldap-lmdb-mdb-load-heap-buffer-underflow-in-readline bugs.openldap.org: https://bugs.openldap.org/show_bug.cgi?id=10421
Credits
Ron Edgerson