GHSA-qcxq-75wr-5cm8: ldap3_proto has LDAP Filter stack exhaustion

May 6, 2026

LDAP queries are not validated for depth, which can cause the parser (both PEG and ASN) to exhaust the stack. This may cause a denial of service in applications that process queries.

References

github.com/advisories/GHSA-qcxq-75wr-5cm8
github.com/advisories/GHSA-r5fr-9gmv-jggh
github.com/kanidm/ldap3
github.com/kanidm/ldap3/security/advisories/GHSA-qcxq-75wr-5cm8

Code Behaviors & Features

Detect and mitigate GHSA-qcxq-75wr-5cm8 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →