Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Gentoo: GLSA-200403-12 Normal: OpenLDAP Server Crash Risk

gentoo
Calendar Grey March 31, 2004
Dist Gentoo Esm H88
OpenLDAP vulnerability alert: improper handling of password requests can lead to slapd server instability. Prompt upgrade advised for enhanced protection.
A failed password operation can cause the OpenLDAP slapd server, if it is using the back-ldbm backend, to free memory that was never allocated

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200403-12
                                             https://security.gentoo.org/

Severity: Normal Title: OpenLDAP DoS Vulnerability Date: March 31, 2004 Bugs: #26728 ID: 200403-12

Synopsis ======= A failed password operation can cause the OpenLDAP slapd server, if it is using the back-ldbm backend, to free memory that was never allocated.
Background ========= OpenLDAP is a suite of LDAP-related application and development tools. It includes slapd (the standalone LDAP server), slurpd (the standalone LDAP replication server), and various LDAP libraries, utilities and example clients.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- net-nds/openlda...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround