5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Cameron Hotchkies discovered that the OpenLDAP server slapd, a free
implementation of the Lightweight Directory Access Protocol, could be
crashed by sending malformed ASN1 requests.
For the stable distribution (etch), this problem has been fixed in
version 2.3.30-5+etch2.
For the unstable distribution (sid), this problem has been fixed in
version 2.4.10-3 of the openldap package.
We recommend that you upgrade your openldap2.3 packages.
CPE | Name | Operator | Version |
---|---|---|---|
openldap2.3 | eq | 2.3.30-5+etch1 | |
openldap2.3 | eq | 2.3.30-5 |