[Kolab-devel] [issue2902] OpenLDAP/slapd: CVE-2008-2952 remote denial of service

Thomas Arendsen Hein kolab-issues at intevation.de
Thu Jul 17 08:28:28 CEST 2008


New submission from Thomas Arendsen Hein <thomas at intevation.de>:

liblber/io.c in OpenLDAP 2.3.41, 2.3.42, and possibly other versions after
2.1.20 allows remote attackers to cause a denial of service (program
termination) via crafted ASN.1 BER datagrams, which trigger an assertion error.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2952
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488710

----------
assignedto: thomas
messages: 15783
nosy: bernhard, martin, thomas, till, wilde, wrobel
priority: urgent
status: unread
title: OpenLDAP/slapd: CVE-2008-2952 remote denial of service
topic: server
___________________________________________________
Kolab issue tracker <kolab-issues at intevation.de>
<https://www.intevation.de/roundup/kolab/issue2902>
___________________________________________________




More information about the devel mailing list