SciLinux: CVE-2009-3767 Moderate: openldap SL4.x i386/x86_64
Summary
authenticated user with privileges to perform modrdn operations coulduse this flaw to crash the slapd daemon via specially-crafted modrdnrequests. (CVE-2010-0211)A flaw was found in the way OpenLDAP handled NUL characters in theCommonName field of X.509 certificates. An attacker able to get acarefully-crafted certificate signed by a trusted Certificate Authoritycould trick applications using OpenLDAP libraries into accepting it bymistake, allowing the attacker to perform a man-in-the-middle attack.(CVE-2009-3767)After installing this update, the OpenLDAP daemons will be restartedautomatically.