OpenLDAP logrotate Script klogd Local DoS

2000-07-26T00:00:00
ID OSVDB:9785
Type osvdb
Reporter OSVDB
Modified 2000-07-26T00:00:00

Description

Vulnerability Description

OpenLDAP contains a flaw that may allow a local denial of service. The issue is triggered when the "logrotate" script sends an improper signal to the kernel log daemon (klogd), which will kill the daemon leading to a loss of availablility.

Solution Description

Upgrade to version 1.2.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

OpenLDAP contains a flaw that may allow a local denial of service. The issue is triggered when the "logrotate" script sends an improper signal to the kernel log daemon (klogd), which will kill the daemon leading to a loss of availablility.

References:

Other Advisory URL: http://www.linuxsecurity.com/advisories/other_advisory-576.html ISS X-Force ID: 5036 CVE-2000-0747