BugZero found this defect 27 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
4/22/2024
MongoDB Server
No affected releases provided.
No fixed releases provided.
RHEL 7.5+ (and by extension, Amazon Linux 2) link the single-threaded version of libldap by default. Additionally, this version of libldap has been patched to use OpenSSL but still relies on Mozilla NSS's db of certs. The server needs to properly detect when libldap is still using MozNSS, which influences whether or not the LDAP connection pool can be used.