Lucene search
RedHatRHSA-2017:1852HistoryAug 01, 2017 - 5:55 a.m.
(RHSA-2017:1852) Moderate: openldap security, bug fix, and enhancement update
2017-08-0105:55:25
access.redhat.com
14
0.915 High
EPSS
Percentile
98.9%
OpenLDAP is an open-source suite of Lightweight Directory Access Protocol (LDAP) applications and development tools. LDAP is a set of protocols used to access and maintain distributed directory information services over an IP network. The openldap packages contain configuration files, libraries, and documentation for OpenLDAP.
The following packages have been upgraded to a later upstream version: openldap (2.4.44). (BZ#1386365)
Security Fix(es):
- A double-free flaw was found in the way OpenLDAP’s slapd server using the MDB backend handled LDAP searches. A remote attacker with access to search the directory could potentially use this flaw to crash slapd by issuing a specially crafted LDAP search query. (CVE-2017-9287)
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | i686 | openldap-devel | < 2.4.44-5.el7 | openldap-devel-2.4.44-5.el7.i686.rpm |
| RedHat | 7 | s390 | openldap | < 2.4.44-5.el7 | openldap-2.4.44-5.el7.s390.rpm |
| RedHat | 7 | aarch64 | openldap-devel | < 2.4.44-5.el7 | openldap-devel-2.4.44-5.el7.aarch64.rpm |
| RedHat | 7 | ppc64le | openldap-debuginfo | < 2.4.44-5.el7 | openldap-debuginfo-2.4.44-5.el7.ppc64le.rpm |
| RedHat | 7 | ppc64 | openldap-clients | < 2.4.44-5.el7 | openldap-clients-2.4.44-5.el7.ppc64.rpm |
| RedHat | 7 | aarch64 | openldap | < 2.4.44-5.el7 | openldap-2.4.44-5.el7.aarch64.rpm |
| RedHat | 7 | s390 | openldap-devel | < 2.4.44-5.el7 | openldap-devel-2.4.44-5.el7.s390.rpm |
| RedHat | 7 | ppc64le | openldap-clients | < 2.4.44-5.el7 | openldap-clients-2.4.44-5.el7.ppc64le.rpm |
| RedHat | 7 | x86_64 | openldap-debuginfo | < 2.4.44-5.el7 | openldap-debuginfo-2.4.44-5.el7.x86_64.rpm |
| RedHat | 7 | s390x | openldap-servers | < 2.4.44-5.el7 | openldap-servers-2.4.44-5.el7.s390x.rpm |
Related
nessus
nessus
Debian DLA-972-1 : openldap security update
2017-06-02 00:00:00
Scientific Linux Security Update : openldap on SL7.x x86_64 (20170801)
2017-08-22 00:00:00
SUSE SLED12 / SLES12 Security Update : openldap2 (SUSE-SU-2017:1567-1)
2017-06-15 00:00:00
oraclelinux
oraclelinux
openldap security, bug fix, and enhancement update
2017-08-07 00:00:00
prion
prion
Double free
2017-05-29 16:29:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1567-1)
2021-04-19 00:00:00
Ubuntu: Security Advisory (USN-3307-1)
2017-06-02 00:00:00
Debian: Security Advisory (DSA-3868-1)
2017-05-29 00:00:00
nvd
nvd
CVE-2017-9287
2017-05-29 16:29:00
osv
osv
openldap - security update
2017-06-01 00:00:00
openldap - security update
2017-05-30 00:00:00
CVE-2017-9287
2017-05-29 16:29:00
ubuntu
ubuntu
OpenLDAP vulnerability
2017-07-19 00:00:00
OpenLDAP vulnerability
2017-06-01 00:00:00
debian
debian
[SECURITY] [DSA 3868-1] openldap security update
2017-05-30 21:24:04
[SECURITY] [DLA 972-1] openldap security update
2017-06-01 21:55:25
fedora
fedora
[SECURITY] Fedora 25 Update: openldap-2.4.44-11.fc25
2017-07-19 02:51:20
ibm
ibm
ubuntucve
ubuntucve
CVE-2017-9287
2017-05-29 00:00:00
mageia
mageia
Updated openldap packages fix security vulnerability
2018-01-03 17:22:14
redhatcve
redhatcve
CVE-2017-9287
2017-05-30 08:48:51
veracode
veracode
Double Free
2020-05-10 23:27:29
checkpoint_advisories
checkpoint_advisories
alpinelinux
alpinelinux
CVE-2017-9287
2017-05-29 16:29:00
centos
centos
openldap security update
2017-08-24 01:40:13
debiancve
debiancve
CVE-2017-9287
2017-05-29 16:29:00
cvelist
cvelist
CVE-2017-9287
2017-05-29 16:00:00
cve
cve
CVE-2017-9287
2017-05-29 16:29:00
f5
f5
photon
photon
suse
suse
Security update for SLES 12-SP2 Docker image (important)
2017-10-11 03:08:09
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00