CVE-2008-0658
Published: 13 February 2008
slapd/back-bdb/modrdn.c in the BDB backend for slapd in OpenLDAP 2.3.39 allows remote authenticated users to cause a denial of service (daemon crash) via a modrdn operation with a NOOP (LDAP_X_NO_OPERATION) control, a related issue to CVE-2007-6698.
Notes
Author | Note |
---|---|
jdstrand | openldap2 source package does not ship slapd |
Priority
Status
Package | Release | Status |
---|---|---|
openldap2 Launchpad, Ubuntu, Debian |
dapper |
Ignored
|
edgy |
Ignored
|
|
feisty |
Ignored
|
|
gutsy |
Ignored
|
|
upstream |
Needed
|
|
openldap2.2 Launchpad, Ubuntu, Debian |
dapper |
Released
(2.2.26-5ubuntu2.6)
|
edgy |
Released
(2.2.26-5ubuntu3.3)
|
|
feisty |
Does not exist
|
|
gutsy |
Does not exist
|
|
upstream |
Needed
|
|
openldap2.3 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Released
(2.3.30-2ubuntu0.2)
|
|
gutsy |
Released
(2.3.35-1ubuntu0.2)
|
|
upstream |
Needed
|
|
Patches: vendor: https://rhn.redhat.com/errata/RHSA-2008-0110.html |