Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2010:0542
HistoryJul 20, 2010 - 12:00 a.m.

(RHSA-2010:0542) Moderate: openldap security update

2010-07-2000:00:00
access.redhat.com
12

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.965 High

EPSS

Percentile

99.5%

JSON

OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools.

Multiple flaws were discovered in the way the slapd daemon handled modify
relative distinguished name (modrdn) requests. An authenticated user with
privileges to perform modrdn operations could use these flaws to crash the
slapd daemon via specially-crafted modrdn requests. (CVE-2010-0211,
CVE-2010-0212)

Red Hat would like to thank CERT-FI for responsibly reporting these flaws,
who credit Ilkka Mattila and Tuomas Salomaki for the discovery of the
issues.

Users of OpenLDAP should upgrade to these updated packages, which contain
a backported patch to correct these issues. After installing this update,
the OpenLDAP daemons will be restarted automatically.

OSVersionArchitecturePackageVersionFilename
RedHat5s390xopenldap-devel< 2.3.43-12.el5_5.1openldap-devel-2.3.43-12.el5_5.1.s390x.rpm
RedHat5x86_64compat-openldap< 2.3.43_2.2.29-12.el5_5.1compat-openldap-2.3.43_2.2.29-12.el5_5.1.x86_64.rpm
RedHat5i386openldap-devel< 2.3.43-12.el5_5.1openldap-devel-2.3.43-12.el5_5.1.i386.rpm
RedHat5i386openldap-servers-overlays< 2.3.43-12.el5_5.1openldap-servers-overlays-2.3.43-12.el5_5.1.i386.rpm
RedHat5ia64openldap-servers-sql< 2.3.43-12.el5_5.1openldap-servers-sql-2.3.43-12.el5_5.1.ia64.rpm
RedHat5s390xopenldap-servers< 2.3.43-12.el5_5.1openldap-servers-2.3.43-12.el5_5.1.s390x.rpm
RedHat5s390xopenldap-servers-sql< 2.3.43-12.el5_5.1openldap-servers-sql-2.3.43-12.el5_5.1.s390x.rpm
RedHat5x86_64openldap-clients< 2.3.43-12.el5_5.1openldap-clients-2.3.43-12.el5_5.1.x86_64.rpm
RedHat5ppc64openldap-devel< 2.3.43-12.el5_5.1openldap-devel-2.3.43-12.el5_5.1.ppc64.rpm
RedHat5x86_64openldap-servers-sql< 2.3.43-12.el5_5.1openldap-servers-sql-2.3.43-12.el5_5.1.x86_64.rpm
Rows per page:
1-10 of 421

Related

openvas 21
nessus 25
altlinux 2
securityvulns 4
ubuntu 1
centos 2
osv 1
fedora 2
debian 1
oraclelinux 2
checkpoint_advisories 2
cve 2
ubuntucve 2
prion 2
veracode 2
vmware 2
debiancve 2
redhat 2
gentoo 1
openvas
openvas
Mandriva Update for openldap MDVSA-2010:142 (openldap)
2010-07-30 00:00:00
CentOS Update for compat-openldap CESA-2010:0542 centos5 i386
2011-08-09 00:00:00
Debian Security Advisory DSA 2077-1 (openldap)
2010-08-21 00:00:00
nessus
nessus
openSUSE Security Update : libldap-2_4-2 (openSUSE-SU-2010:0546-1)
2010-08-26 00:00:00
Debian DSA-2077-1 : openldap - several vulnerabilities
2010-08-03 00:00:00
SuSE 11 Security Update : openLDAP (SAT Patch Number 2552)
2010-12-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package openldap2.4 version 2.4.23-alt1
2010-06-30 00:00:00
Security fix for the ALT Linux 5 package openldap2.4 version 2.4.23-alt0.M50P.1
2010-07-01 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:142 ] openldap
2010-07-30 00:00:00
OpenLDAP multiple security vulnerabilities
2010-07-30 00:00:00
Apple Mac OS X and QuickTime multiple security vulnerabilities
2013-11-18 00:00:00
ubuntu
ubuntu
OpenLDAP vulnerabilities
2010-08-09 00:00:00
centos
centos
compat, openldap security update
2010-07-21 22:18:04
compat, openldap security update
2010-07-21 19:15:25
osv
osv
openldap - potential code execution
2010-07-29 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: openldap-2.4.19-6.fc12
2010-10-31 21:33:48
[SECURITY] Fedora 13 Update: openldap-2.4.21-10.fc13
2010-08-23 22:04:44
debian
debian
[SECURITY] [DSA 2077-1] New openldap packages fix potential code execution
2010-07-29 19:08:28
oraclelinux
oraclelinux
openldap security update
2010-07-20 00:00:00
openldap security update
2010-07-20 00:00:00
checkpoint_advisories
checkpoint_advisories
OpenLDAP Modrdn RDN NULL String Denial of Service (CVE-2010-0212)
2010-10-13 00:00:00
OpenLDAP Modrdn RDN UTF-8 String Code Execution (CVE-2010-0211)
2010-10-13 00:00:00
cve
cve
CVE-2010-0212
2010-07-28 12:48:00
CVE-2010-0211
2010-07-28 12:48:00
ubuntucve
ubuntucve
CVE-2010-0212
2010-07-28 00:00:00
CVE-2010-0211
2010-07-28 00:00:00
prion
prion
Null pointer dereference
2010-07-28 12:48:00
Double free
2010-07-28 12:48:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:44:09
Denial Of Service (DoS)
2020-04-10 00:44:09
vmware
vmware
VMware ESX third party updates for Service Console packages glibc, sudo, and openldap
2011-01-04 00:00:00
VMware ESX third party updates for Service Console packages glibc, sudo, and openldap
2011-01-04 00:00:00
debiancve
debiancve
CVE-2010-0212
2010-07-28 12:48:00
CVE-2010-0211
2010-07-28 12:48:00
redhat
redhat
(RHSA-2010:0543) Moderate: openldap security update
2010-07-20 00:00:00
(RHSA-2010:0622) Important: rhev-hypervisor security and bug fix update
2010-08-19 00:00:00
gentoo
gentoo
OpenLDAP: Multiple vulnerabilities
2014-06-30 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.965 High

EPSS

Percentile

99.5%

JSON
Related for RHSA-2010:0542
openvas21nessus25altlinux2securityvulns4ubuntu1centos2osv1fedora2debian1oraclelinux2checkpoint_advisories2cve2ubuntucve2prion2veracode2vmware2debiancve2redhat2gentoo1