Lucene search
GoogleOSV:DSA-1541-1HistoryApr 08, 2008 - 12:00 a.m.
openldap2.3
2008-04-0800:00:00
Google
osv.dev
6
0.045 Low
EPSS
Percentile
92.5%
Several remote vulnerabilities have been discovered in OpenLDAP, a
free implementation of the Lightweight Directory Access Protocol. The
Common Vulnerabilities and Exposures project identifies the following
problems:
- CVE-2007-5707
Thomas Sesselmann discovered that slapd could be crashed by a
malformed modify requests. - CVE-2007-5708
Toby Blade discovered that incorrect memory handling in slapo-pcache
could lead to denial of service through crafted search requests. - CVE-2007-6698
It was discovered that a programming error in the interface to the
BDB storage backend could lead to denial of service through
crafted modify requests. - CVE-2008-0658
It was discovered that a programming error in the interface to the
BDB storage backend could lead to denial of service through
crafted modrdn requests.
For the stable distribution (etch), these problems have been fixed in
version 2.3.30-5+etch1.
For the unstable distribution (sid), these problems have been fixed in
version 2.4.7-6.1.
We recommend that you upgrade your openldap2.3 packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openldap2.3 | eq | 2.3.30-5 |
References
Related
openvas
openvas
Debian: Security Advisory (DSA-1541-1)
2008-04-21 00:00:00
Debian Security Advisory DSA 1541-1 (openldap2.3)
2008-04-21 00:00:00
Gentoo Security Advisory GLSA 200803-28 (openldap)
2008-09-24 00:00:00
nessus
nessus
Debian DSA-1541-1 : openldap2.3 - several vulnerabilities
2008-04-11 00:00:00
GLSA-200803-28 : OpenLDAP: Denial of Service vulnerabilities
2008-03-21 00:00:00
Mandriva Linux Security Advisory : openldap (MDVSA-2008:058)
2009-04-23 00:00:00
debian
debian
[SECURITY] [DSA 1541-1] New openldap2.3 packages fix denial of service
2008-04-08 21:50:58
gentoo
gentoo
OpenLDAP: Denial of Service vulnerabilities
2008-03-19 00:00:00
freebsd
freebsd
openldap -- multiple remote denial of service vulnerabilities
2007-10-29 00:00:00
openldap -- modrdn Denial of Service vulnerability
2008-02-13 00:00:00
ubuntu
ubuntu
OpenLDAP vulnerabilities
2007-12-04 00:00:00
OpenLDAP vulnerabilities
2008-03-05 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: openldap-2.3.34-4.fc7
2007-11-20 17:47:47
[SECURITY] Fedora 8 Update: openldap-2.3.39-1.fc8
2007-11-09 23:48:49
[SECURITY] Fedora 7 Update: openldap-2.3.34-7.fc7
2008-02-13 05:15:42
cve
cve
securityvulns
securityvulns
OpenDAL DoS
2008-02-16 00:00:00
rPSA-2008-0059-1 openldap openldap-clients openldap-servers
2008-02-16 00:00:00
redhat
redhat
(RHSA-2008:0110) Moderate: openldap security update
2008-02-21 00:00:00
(RHSA-2007:1037) Important: openldap security and enhancement update
2007-11-08 00:00:00
(RHSA-2007:1038) Moderate: openldap security and enhancement update
2007-11-15 00:00:00
centos
centos
compat, openldap security update
2008-02-22 13:54:12
compat, openldap security update
2007-11-15 19:22:48
prion
prion
nvd
nvd
oraclelinux
oraclelinux
Moderate: openldap security update
2008-02-21 00:00:00
Important: openldap security and enhancement update
2007-11-23 00:00:00
cvelist
cvelist
ubuntucve
ubuntucve
exploitpack
exploitpack
OpenLDAP 2.3.39 - MODRDN Remote Denial of Service
2009-11-09 00:00:00
exploitdb
exploitdb
OpenLDAP 2.3.39 - MODRDN Remote Denial of Service
2009-11-09 00:00:00
OpenLDAP 2.3.39 MODRDN Remote Denial of Service Vulnerability
2008-02-13 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package openldap2.4 version 2.3.41-alt1
2008-02-25 00:00:00