Hi Team,

 

We are currently using OpenLDAP version 2.4.57 in which vulnerability CVE-2023-2953 was not there.

We are planning to upgrade to OpenLDAP-2.6.4 however in this version we found CVE-2023-2953 in our scanning, can you please help in understanding why this vulnerability is opened in latest release.

 

In which release we can expect this vulnerability to get resolved?

 

Appreciate your earliest response.

 

Regards,

Sahil