Debian Local Security Checks : Debian Security Advisory DSA 227-1 (openldap2)

Preis/Funktionszusammenfassung | Bestellen | Neue Anfälligkeiten | Vertraulichkeit | Anfälligkeiten Suche

Anfälligkeitssuche		Suche in 61204 CVE Beschreibungen und 32582 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.53721

Kategorie: Debian Local Security Checks

Titel: Debian Security Advisory DSA 227-1 (openldap2)

Zusammenfassung: Debian Security Advisory DSA 227-1 (openldap2)

Beschreibung: The remote host is missing an update to openldap2
announced via advisory DSA 227-1.

The SuSE Security Team reviewed critical parts of openldap2, an
implementation of the Lightweight Directory Access Protocol (LDAP)
version 2 and 3, and found several buffer overflows and other bugs
remote attackers could exploit to gain access on systems running
vulnerable LDAP servers. In addition to these bugs, various local
exploitable bugs within the OpenLDAP2 libraries have been fixed.

For the current stable distribution (woody) these problems have been
fixed in version 2.0.23-6.3.

The old stable distribution (potato) does not contain OpenLDAP2
packages.

For the unstable distribution (sid) these problems have been fixed in
version 2.0.27-3.

We recommend that you upgrade your openldap2 packages.

Solution:
http://www.securityspace.com/smysecure/catid.html?in=DSA%20227-1

Querverweis: BugTraq ID: 6328
Common Vulnerability Exposure (CVE) ID: CVE-2002-1378
http://www.linuxsecurity.com/advisories/gentoo_advisory-2704.html
Conectiva Linux advisory: CLA-2002:556
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000556
Debian Security Information: DSA-227 (Google Search)
http://www.debian.org/security/2003/dsa-227
http://www.securityfocus.com/advisories/4827
http://www.mandriva.com/security/advisories?name=MDKSA-2003:006
RedHat Security Advisories: RHSA-2003:040
SuSE Security Announcement: SuSE-SA:2002:047 (Google Search)
http://www.novell.com/linux/security/advisories/2002_047_openldap2.html
TurboLinux Advisory: TLSA-2003-5
http://www.turbolinux.com/security/TLSA-2003-5.txt
Computer Incident Advisory Center Bulletin: N-043
http://www.ciac.org/ciac/bulletins/n-043.shtml
http://www.securityfocus.com/bid/6328
XForce ISS Database: openldap-multiple-bo(10800)
http://xforce.iss.net/xforce/xfdb/10800
Common Vulnerability Exposure (CVE) ID: CVE-2002-1379

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 32582 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Registrierung eines neuen Benutzers
Email:

Benutzerkennung:

Passwort:

Bitte schicken Sie mir den monatlichen Newsletter, der mich über die neuesten Services, Verbesserungen und Umfragen informiert.

Bitte schicken Sie mir eine Anfälligkeitstest Benachrichtigung, wenn ein neuer Test hinzugefügt wird.

Datenschutz

Anmeldung für registrierte Benutzer

Benutzerkennung:

Passwort:

Benutzerkennung oder Passwort vergessen?

Email/Benutzerkennung:

Test Kennung:	1.3.6.1.4.1.25623.1.0.53721
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 227-1 (openldap2)
Zusammenfassung:	Debian Security Advisory DSA 227-1 (openldap2)
Beschreibung:	The remote host is missing an update to openldap2 announced via advisory DSA 227-1. The SuSE Security Team reviewed critical parts of openldap2, an implementation of the Lightweight Directory Access Protocol (LDAP) version 2 and 3, and found several buffer overflows and other bugs remote attackers could exploit to gain access on systems running vulnerable LDAP servers. In addition to these bugs, various local exploitable bugs within the OpenLDAP2 libraries have been fixed. For the current stable distribution (woody) these problems have been fixed in version 2.0.23-6.3. The old stable distribution (potato) does not contain OpenLDAP2 packages. For the unstable distribution (sid) these problems have been fixed in version 2.0.27-3. We recommend that you upgrade your openldap2 packages. Solution: http://www.securityspace.com/smysecure/catid.html?in=DSA%20227-1
Querverweis:	BugTraq ID: 6328 Common Vulnerability Exposure (CVE) ID: CVE-2002-1378 http://www.linuxsecurity.com/advisories/gentoo_advisory-2704.html Conectiva Linux advisory: CLA-2002:556 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000556 Debian Security Information: DSA-227 (Google Search) http://www.debian.org/security/2003/dsa-227 http://www.securityfocus.com/advisories/4827 http://www.mandriva.com/security/advisories?name=MDKSA-2003:006 RedHat Security Advisories: RHSA-2003:040 SuSE Security Announcement: SuSE-SA:2002:047 (Google Search) http://www.novell.com/linux/security/advisories/2002_047_openldap2.html TurboLinux Advisory: TLSA-2003-5 http://www.turbolinux.com/security/TLSA-2003-5.txt Computer Incident Advisory Center Bulletin: N-043 http://www.ciac.org/ciac/bulletins/n-043.shtml http://www.securityfocus.com/bid/6328 XForce ISS Database: openldap-multiple-bo(10800) http://xforce.iss.net/xforce/xfdb/10800 Common Vulnerability Exposure (CVE) ID: CVE-2002-1379
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com