Описание
ELSA-2015-1840: openldap security update (IMPORTANT)
[2.3.43-29]
- CVE-2015-6908 openldap: ber_get_next denial of service vulnerability (#1263170)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
compat-openldap
2.3.43_2.2.29-29.el5_11
openldap
2.3.43-29.el5_11
openldap-clients
2.3.43-29.el5_11
openldap-devel
2.3.43-29.el5_11
openldap-servers
2.3.43-29.el5_11
openldap-servers-overlays
2.3.43-29.el5_11
openldap-servers-sql
2.3.43-29.el5_11
Oracle Linux x86_64
compat-openldap
2.3.43_2.2.29-29.el5_11
openldap
2.3.43-29.el5_11
openldap-clients
2.3.43-29.el5_11
openldap-devel
2.3.43-29.el5_11
openldap-servers
2.3.43-29.el5_11
openldap-servers-overlays
2.3.43-29.el5_11
openldap-servers-sql
2.3.43-29.el5_11
Oracle Linux i386
compat-openldap
2.3.43_2.2.29-29.el5_11
openldap
2.3.43-29.el5_11
openldap-clients
2.3.43-29.el5_11
openldap-devel
2.3.43-29.el5_11
openldap-servers
2.3.43-29.el5_11
openldap-servers-overlays
2.3.43-29.el5_11
openldap-servers-sql
2.3.43-29.el5_11
Oracle Linux 7
Oracle Linux x86_64
openldap
2.4.39-7.el7_1
openldap-clients
2.4.39-7.el7_1
openldap-devel
2.4.39-7.el7_1
openldap-servers
2.4.39-7.el7_1
openldap-servers-sql
2.4.39-7.el7_1
Oracle Linux 6
Oracle Linux x86_64
openldap
2.4.40-6.el6_7
openldap-clients
2.4.40-6.el6_7
openldap-devel
2.4.40-6.el6_7
openldap-servers
2.4.40-6.el6_7
openldap-servers-sql
2.4.40-6.el6_7
Oracle Linux i686
openldap
2.4.40-6.el6_7
openldap-clients
2.4.40-6.el6_7
openldap-devel
2.4.40-6.el6_7
openldap-servers
2.4.40-6.el6_7
openldap-servers-sql
2.4.40-6.el6_7
Связанные CVE
Связанные уязвимости
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.
The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 ...
