remote denial of service in openldap2-client

2006-11-24T16:46:57
ID SUSE-SA:2006:072
Type suse
Reporter Suse
Modified 2006-11-24T16:46:57

Description

OpenLDAP libldap's strval2strlen() function contained a bug when processing the authcid string of certain Bind Requests, which could allow attackers to cause an affected application (especially the OpenLDAP Server) to crash.

Solution

There is no known workaround, please install the update packages.