16 matches found
Oracle Linux 5 : nss_ldap (ELSA-2008-0389)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2008-0389 advisory. 253-12 - rebuild 253-11 - backport changes to group parsing from version 254 to fix heap corruption when parsing nested groups 444031 253-10 - remove unnecessar...
SLES9: Security update for nss_ldap
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: nssldap For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5021857 within the SuS...
RedHat Update for nss_ldap RHSA-2008:0715-01
Check for the Version of nssldap OpenVAS Vulnerability Test RedHat Update for nssldap RHSA-2008:0715-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
RedHat Update for nss_ldap RHSA-2008:0389-02
Check for the Version of nssldap OpenVAS Vulnerability Test RedHat Update for nssldap RHSA-2008:0389-02 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Gentoo Security Advisory GLSA 200711-33 (nss_ldap)
The remote host is missing updates announced in advisory GLSA 200711-33. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
RHEL 4 : nss_ldap (RHSA-2008:0715)
An updated nssldap package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The nssldap package contains the nssldap and pamldap modules. The nssldap module is a plug-in which allows...
Low: Red Hat Security Advisory: nss_ldap security and bug fix update
An updated nssldap package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The nssldap package contains the nssldap and pamldap modules. The nssldap module is a plug-in which allows...
SuSE 10 Security Update : nss_ldap (ZYPP Patch Number 4781)
nssldap returned incorrect data under certain circumstances to the calling process. Some applications could therefore work with wrong user data. CVE-2007-5794 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc...
openSUSE 10 Security Update : nss_ldap (nss_ldap-4773)
nssldap returned incorrect data under certain circumstances to the calling process. Some applications could therefore work with wrong user data CVE-2007-5794. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
Debian DSA-1430-1 : libnss-ldap - denial of service
It was reported that a race condition exists in libnss-ldap, an NSS module for using LDAP as a naming service, which could cause denial of service attacks if applications use pthreads. This problem was spotted in the dovecot IMAP/POP server but potentially affects more programs. %NASLMINLEVEL 703...
[SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1430-1 [email protected] http://www.debian.org/security/ Steve Kemp December 11, 2007 http://www.debian.org/security/faq -...
[ GLSA 200711-33 ] nss_ldap: Information disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200711-33 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...
CVE-2007-5794
Race condition in nssldap, when used in applications that are linked against the pthread library and fork after a call to nssldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot with the wrong...
CVE-2007-5794
Race condition in nssldap, when used in applications that are linked against the pthread library and fork after a call to nssldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot with the wrong...
DEBIAN-CVE-2007-5794
Race condition in nssldap, when used in applications that are linked against the pthread library and fork after a call to nssldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot with the wrong...
CVE-2007-5794
CVE-2007-5794 describes a race condition in the nss_ldap component (nss_ldap and pam_ldap) that can occur when applications are linked against pthreads and fork after an LDAP call, potentially causing user data to be returned to the wrong process. The issue originates with improper handling of LD...