Fedora 21: openldap Security Update

    Date13 Apr 2015
    CategoryFedora
    97
    Posted ByLinuxSecurity Advisories
    CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2015-2055
    2015-02-14 23:26:22
    --------------------------------------------------------------------------------
    
    Name        : openldap
    Product     : Fedora 21
    Version     : 2.4.40
    Release     : 3.fc21
    URL         : http://www.openldap.org/
    Summary     : LDAP support libraries
    Description :
    OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
    Protocol) applications and development tools. LDAP is a set of
    protocols for accessing directory services (usually phone book style
    information, but other information is possible) over the Internet,
    similar to the way DNS (Domain Name System) information is propagated
    over the Internet. The openldap package contains configuration files,
    libraries, and documentation for OpenLDAP.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Tue Feb 10 2015 Jan Synáček  - 2.4.40-3
    - CVE-2015-1545: slapd crashes on search with deref control (#1190645)
    --------------------------------------------------------------------------------
    References:
    
      [ 1 ] Bug #1190643 - CVE-2015-1545 openldap: slapd crashes on search with deref control and empty attr list
            https://bugzilla.redhat.com/show_bug.cgi?id=1190643
    --------------------------------------------------------------------------------
    
    This update can be installed with the "yum" update program.  Use
    su -c 'yum update openldap' at the command line.
    For more information, refer to "Managing Software with yum",
    available at http://docs.fedoraproject.org/yum/.
    
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://admin.fedoraproject.org/mailman/listinfo/package-announce
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"25","type":"x","order":"1","pct":54.35,"resources":[]},{"id":"88","title":"Should be more technical","votes":"5","type":"x","order":"2","pct":10.87,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"16","type":"x","order":"3","pct":34.78,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.