MiracleLinux 7 : openldap-2.4.39-7.el7 (AXSA:2015-501:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-501:01 advisory. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing...

Linux Distros Unpatched Vulnerability : CVE-2015-6908

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bergetnext function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service reachable assertion and...

RHEL 4 : openldap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - openldap: bergetnext denial of service vulnerability CVE-2015-6908 Note that Nessus has not tested for this issue b...

K17460: OpenLDAP vulnerability CVE-2015-6908

Security Advisory Description The bergetnext function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd. CVE-2015-6908 Impact A...

SUSE CVE-2015-6908

The bergetnext function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd...

SUSE: Security Advisory (SUSE-SU-2016:0778-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:0090-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:0224-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability in OpenLDAP (CVE-2015-6908)

Summary IBM Security Access Manager appliances use OpenLDAP. A vulnerability has been identified in OpenLDAP that affects the IBM Security Access Manager appliances. IBM Security Access Manager has addressed this vulnerability. Vulnerability Details CVEID: CVE-2015-6908 DESCRIPTION: OpenLDAP is...

Security Bulletin: A vulnerability in openLDAP affects IBM Flex System Manager(FSM) (CVE-2015-6908)

Summary A security vulnerability has been discovered in openLDAP that is embedded in the IBM FSM. This bulletin addresses the vulnerability. Vulnerability Details CVEID: CVE-2015-6908 DESCRIPTION: OpenLDAP is vulnerable to a denial of service, caused by an assertion error in the bergetnext...

Security Bulletin: Vulnerabilities in OpenLDAP affect PowerKVM (CVE-2015-3276, CVE-2015-6908)

Summary PowerKVM is affected by two vulnerabilities in OpenLDAP. These vulnerabilities are now fixed. Vulnerability Details CVEID: CVE-2015-3276 DESCRIPTION: OpenLDAP could allow a remote attacker to bypass security restrictions, caused by the failure to properly parse OpenSSL-style cipher string...

Security Bulletin: A vulnerability in OpenLDAP affects IBM Tivoli Composite Application Manager for Transactions (CVE-2015-6908)

Summary A vulnerability in OpenLDAP 2.4.42 was disclosed on September 10, 2015 by openldap.org as a fix in OpenLDAP 2.4.43 ITS8240. OpenLDAP 2.4.44, used by IBM Tivoli Composite Application Manager for Transactions, has addressed the vulnerability. Vulnerability Details CVE-ID: CVE-2015-6908...

Security Bulletin: IBM Security Access Manager appliances are affected by a vulnerability in OpenLDAP (CVE-2015-6908)

Summary A vulnerability in OpenLDAP affects IBM Security Access Manager appliances. Vulnerability Details CVEID: CVE-2015-6908 DESCRIPTION: OpenLDAP is vulnerable to a denial of service, caused by an assertion error in the bergetnext function. By sending a specially-crafted packet, a remote...

OracleVM 3.2 : openldap (OVMSA-2016-0069)

The remote OracleVM system is missing necessary patches to address critical security updates : - CVE-2015-6908 openldap: bergetnext denial of service vulnerability 1263170 - fix: syncprov psearch race condition 999811 - fix: CVE-2013-4449 segfault on certain queries with rwm overlay 1064146 - fix...

openSUSE Security Update : openldap2 (openSUSE-2016-102) (Logjam)

This update fixes the following security issues : - CVE-2015-6908: The bergetnext function allowed remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd. bsc945582 - CVE-2015-4000: Fix weak...

openSUSE Security Update : openldap2 (openSUSE-2016-104) (Logjam)

This update fixes the following security issues : - CVE-2015-6908: The bergetnext function allowed remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd. bsc945582 - CVE-2015-4000: Fix weak...

openSUSE: Security Advisory for openldap2 (openSUSE-SU-2016:0261-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for openldap2 (openSUSE-SU-2016:0255-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for openldap2 (important)

This update fixes the following security issues: - CVE-2015-6908: The bergetnext function allowed remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd. bsc945582 - CVE-2015-4000: Fix weak...

SUSE-SU-2016:0262-1 Security update for openldap2

This update fixes the following security issues: - CVE-2015-6908: The bergetnext function allowed remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd. bsc945582 - CVE-2015-4000: Fix weak...