Lucene search
RedHatRHSA-2007:1038HistoryNov 15, 2007 - 12:00 a.m.
(RHSA-2007:1038) Moderate: openldap security and enhancement update
2007-11-1500:00:00
access.redhat.com
37
EPSS
0.038
Percentile
92.0%
OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools.
A flaw was found in the way OpenLDAP’s slapd daemon handled malformed
objectClasses LDAP attributes. An authenticated local or remote attacker
could create an LDAP request which could cause a denial of service by
crashing slapd. (CVE-2007-5707)
In addition, the following feature was added:
- OpenLDAP client tools now have new option to configure their bind timeout.
All users are advised to upgrade to these updated openldap packages, which
contain a backported patch to correct this issue and provide this security
enhancement.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 4 | s390x | openldap-devel | < 2.2.13-8.el4_6.1 | openldap-devel-2.2.13-8.el4_6.1.s390x.rpm |
| RedHat | 4 | ia64 | openldap | < 2.2.13-8.el4_6.1 | openldap-2.2.13-8.el4_6.1.ia64.rpm |
| RedHat | 4 | i386 | openldap-servers-sql | < 2.2.13-8.el4_6.1 | openldap-servers-sql-2.2.13-8.el4_6.1.i386.rpm |
| RedHat | 4 | x86_64 | openldap-clients | < 2.2.13-8.el4_6.1 | openldap-clients-2.2.13-8.el4_6.1.x86_64.rpm |
| RedHat | 4 | ppc64 | openldap | < 2.2.13-8.el4_6.1 | openldap-2.2.13-8.el4_6.1.ppc64.rpm |
| RedHat | 4 | s390x | openldap-clients | < 2.2.13-8.el4_6.1 | openldap-clients-2.2.13-8.el4_6.1.s390x.rpm |
| RedHat | 4 | src | openldap | < 2.2.13-8.el4_6.1 | openldap-2.2.13-8.el4_6.1.src.rpm |
| RedHat | 4 | x86_64 | compat-openldap | < 2.1.30-8.el4_6.1 | compat-openldap-2.1.30-8.el4_6.1.x86_64.rpm |
| RedHat | 4 | s390 | openldap | < 2.2.13-8.el4_6.1 | openldap-2.2.13-8.el4_6.1.s390.rpm |
| RedHat | 4 | ia64 | openldap-clients | < 2.2.13-8.el4_6.1 | openldap-clients-2.2.13-8.el4_6.1.ia64.rpm |
Related
nessus
nessus
Scientific Linux Security Update : openldap on SL5.x i386/x86_64
2012-08-01 00:00:00
CentOS 4 : openldap (CESA-2007:1038)
2013-06-29 00:00:00
RHEL 4 : openldap (RHSA-2007:1038)
2007-11-16 00:00:00
openvas
openvas
Fedora Update for openldap FEDORA-2007-741
2009-02-27 00:00:00
Oracle: Security Advisory (ELSA-2007-1037)
2015-10-08 00:00:00
Mandriva Update for openldap MDKSA-2007:215 (openldap)
2009-04-09 00:00:00
centos
centos
compat, openldap security update
2007-11-15 19:22:48
prion
prion
Double free
2007-10-30 19:46:00
oraclelinux
oraclelinux
Important: openldap security and enhancement update
2007-11-23 00:00:00
ubuntucve
ubuntucve
CVE-2007-5707
2007-10-30 00:00:00
cve
cve
CVE-2007-5707
2007-10-30 19:46:00
cvelist
cvelist
CVE-2007-5707
2007-10-30 19:00:00
redhat
redhat
(RHSA-2007:1037) Important: openldap security and enhancement update
2007-11-08 00:00:00
nvd
nvd
CVE-2007-5707
2007-10-30 19:46:00
freebsd
freebsd
openldap -- multiple remote denial of service vulnerabilities
2007-10-29 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: openldap-2.3.34-4.fc7
2007-11-20 17:47:47
[SECURITY] Fedora 8 Update: openldap-2.3.39-1.fc8
2007-11-09 23:48:49
ubuntu
ubuntu
OpenLDAP vulnerabilities
2007-12-04 00:00:00
gentoo
gentoo
OpenLDAP: Denial of Service vulnerabilities
2008-03-19 00:00:00
osv
osv
openldap2.3
2008-04-08 00:00:00
debian
debian
[SECURITY] [DSA 1541-1] New openldap2.3 packages fix denial of service
2008-04-08 21:50:58