Fedora 21: openldap Security Update

    Date13 Apr 2015
    156
    Posted ByLinuxSecurity Advisories
    CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2015-2055
    2015-02-14 23:26:22
    --------------------------------------------------------------------------------
    
    Name        : openldap
    Product     : Fedora 21
    Version     : 2.4.40
    Release     : 3.fc21
    URL         : https://www.openldap.org/
    Summary     : LDAP support libraries
    Description :
    OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
    Protocol) applications and development tools. LDAP is a set of
    protocols for accessing directory services (usually phone book style
    information, but other information is possible) over the Internet,
    similar to the way DNS (Domain Name System) information is propagated
    over the Internet. The openldap package contains configuration files,
    libraries, and documentation for OpenLDAP.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Tue Feb 10 2015 Jan Synáček  - 2.4.40-3
    - CVE-2015-1545: slapd crashes on search with deref control (#1190645)
    --------------------------------------------------------------------------------
    References:
    
      [ 1 ] Bug #1190643 - CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list
            https://bugzilla.redhat.com/show_bug.cgi?id=1190643
    --------------------------------------------------------------------------------
    
    This update can be installed with the "yum" update program.  Use
    su -c 'yum update openldap' at the command line.
    For more information, refer to "Managing Software with yum",
    available at https://docs.fedoraproject.org/yum/.
    
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://admin.fedoraproject.org/mailman/listinfo/package-announce
    

    LinuxSecurity Poll

    What do you think of the LinuxSecurity Privacy news articles?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/25-what-do-you-think-of-the-linuxsecurity-privacy-news-articles?task=poll.vote&format=json
    25
    radio
    [{"id":"90","title":"Love them!","votes":"90","type":"x","order":"1","pct":78.95,"resources":[]},{"id":"91","title":"I'm indifferent","votes":"18","type":"x","order":"2","pct":15.79,"resources":[]},{"id":"92","title":"Not interested in this topic","votes":"6","type":"x","order":"3","pct":5.26,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.