openldap is vulnerable to denial of service. An assertion failure and daemon exit occurs in slapd
when an LDAP search query with attrsOnly
set to true returns empty attributes. This allows a remote attacker to exploit the vulnerability to crash the process.
rhn.redhat.com/errata/RHSA-2012-0899.html
secunia.com/advisories/48372
secunia.com/advisories/49607
security.gentoo.org/glsa/glsa-201406-36.xml
www.mandriva.com/security/advisories?name=MDVSA-2012:130
www.openldap.org/its/index.cgi/Software%20Bugs?id=7143
www.openldap.org/software/release/changes.html
www.securityfocus.com/bid/52404
access.redhat.com/security/updates/classification/#low
bugzilla.redhat.com/show_bug.cgi?id=732916
bugzilla.redhat.com/show_bug.cgi?id=742023
bugzilla.redhat.com/show_bug.cgi?id=742163
bugzilla.redhat.com/show_bug.cgi?id=743781
bugzilla.redhat.com/show_bug.cgi?id=745470
bugzilla.redhat.com/show_bug.cgi?id=783445
bugzilla.redhat.com/show_bug.cgi?id=784203
bugzilla.redhat.com/show_bug.cgi?id=790687
bugzilla.redhat.com/show_bug.cgi?id=796808
bugzilla.redhat.com/show_bug.cgi?id=807363
bugzilla.redhat.com/show_bug.cgi?id=816168
bugzilla.redhat.com/show_bug.cgi?id=818844
docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.3_Technical_Notes/openldap.html#RHSA-2012-0899
rhn.redhat.com/errata/RHSA-2012-0899.html