Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 754
Alerts This Week
Warning Icon 1 754

Fedora 23: Critical Fix for bind-dyndb-ldap Assertion Errors

fedora
Calendar Grey December 19, 2015
Dist Fedora Esm H88
This alert outlines the resolution for bind-dyndb-ldap weaknesses impacting Fedora 23, with significant consequences.
security fix

Summary

This package provides an LDAP back-end plug-in for BIND. It features

support for dynamic updates and internal caching, to lift the load

off of your LDAP server.

Update Information:

security fix

Change Log

References


[ 1 ] Bug #1291176 - CVE-2015-8000 bind: responses with a malformed class attribute can trigger an assertion failure in db.c https://bugzilla.redhat.com/show_bug.cgi?id=1291176 [ 2 ] Bug #1291186 - CVE-2015-8461 bind: race condition when handling socket errors can lead to an assertion failure in resolver.c https://bugzilla.redhat.com/show_bug.cgi?id=1291186

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update bind-dyndb-ldap' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: bind-dyndb-ldap
Product: Fedora 23
Version: 8.0
Release: 4.fc23
Summary: LDAP back-end plug-in for BIND

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.