English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 143769 CVE descriptions
and 71225 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2008-38
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 05 Nov 2008
 Last revised: 05 Nov 2008

 Package: openldap

 Summary: Multiple vulnerabilities exist in openldap

 More information:
    LDAP servers and clients, as well as interfaces to other protocols.
    Note that this does not include the slapd interface to X.500 and
    therefore does not require the ISODE package.

    Multiple vulnerabilities have been discovered in openldap.

 Impact:
    Please refer to the "References" section.

 Affected Products:
    - Turbolinux Client 2008
    - Turbolinux Appliance Server 3.0 x64 Edition
    - Turbolinux Appliance Server 3.0
    - Turbolinux 11 Server x64 Edition
    - Turbolinux 11 Server
    - Turbolinux Appliance Server 2.0
    - Turbolinux 10 Server x64 Edition
    - Turbolinux 10 Server


 <Turbolinux Client 2008>

   Source Packages
   Size: MD5

   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-source/nss_ldap-254-3.src.rpm
       237773 165adbc6f9239974d17c37d3fab2cddf
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-source/openldap-2.3.37-6.src.rpm
      3795789 d3d53bba9a7ef0fdd5d66aad92fec6ed
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/pam_ldap-180-1.src.rpm 
       137088 a1629aefb217c1c5b37d8d71ab6f7dea

   Binary Packages
   Size: MD5

   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/nss_ldap-254-3.i586.rpm
       102224 b7adcd9705708a7f74d7266fac1c4f4c
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/openldap-2.3.37-6.i586.rpm
       153082 ce09dd0fbd30d9d2b7afcaec096fb7bf
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/openldap-devel-2.3.37-6.i586.rpm
      2114358 b498c80c4c8179cb6463c0bb41b6e680
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/openldap-libs-2.3.37-6.i586.rpm
       322332 f09e0baaf6318495f063600281099a19
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/openldap-servers-2.3.37-6.i586.rpm
      2006582 8872f421635f089236424b1e9d4a43e9
   http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/pam_ldap-180-1.i586.rpm 
        53361 156c0bd6fee2894e1d659d50b544b61a

 <Turbolinux Appliance Server 3.0 x64 Edition>

   Source Packages
   Size: MD5

   openldap-2.3.37-5.src.rpm
      3795331 2a7a28c97c099d4d9e348abc05839a47

   Binary Packages
   Size: MD5

   openldap-2.3.37-5.x86_64.rpm
      1029980 0833a91bab2b66cefef81ee45a5ef708
   openldap-libs-2.3.37-5.x86_64.rpm
       325331 debb1fdf6e37e1530412b80a96964654
   openldap-servers-2.3.37-5.x86_64.rpm
      1746137 8d527db8f2bd993ca098e24366d87942

 <Turbolinux Appliance Server 3.0>

   Source Packages
   Size: MD5

   openldap-2.3.37-5.src.rpm
      3795331 2a7a28c97c099d4d9e348abc05839a47

   Binary Packages
   Size: MD5

   openldap-2.3.37-5.i686.rpm
       995292 6cc097c6f51cb17408a44773df6ae463
   openldap-libs-2.3.37-5.i686.rpm
       296577 4c4771a47f93685ca651bd9a5b52dc49
   openldap-servers-2.3.37-5.i686.rpm
      1624318 8c87574a7418f05885512e811ab920d0

 <Turbolinux 11 Server x64 Edition>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/11/updates/SRPMS/openldap-2.3.37-5.src.rpm
      3795331 2a7a28c97c099d4d9e348abc05839a47
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/11/updates/SRPMS/openldap-32bit-2.3.37-5_2008102301.src.rpm
       693856 5e9bd3c4a49640232cc43d3f960a111c

   Binary Packages
   Size: MD5

   openldap-2.3.37-5.x86_64.rpm
      1029980 0833a91bab2b66cefef81ee45a5ef708
   openldap-devel-2.3.37-5.x86_64.rpm
       475927 63539202a3530cf031be0cb38c5fedf2
   openldap-libs-2.3.37-5.x86_64.rpm
       325331 debb1fdf6e37e1530412b80a96964654
   openldap-servers-2.3.37-5.x86_64.rpm
      1746137 8d527db8f2bd993ca098e24366d87942
   openldap-32bit-2.3.37-5_2008102301.x86_64.rpm
       273281 f24a284077c45433588b3a6c36d97e63

 <Turbolinux 11 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/11/updates/SRPMS/openldap-2.3.37-5.src.rpm
      3795331 2a7a28c97c099d4d9e348abc05839a47

   Binary Packages
   Size: MD5

   openldap-2.3.37-5.i686.rpm
       995160 93ab8c951493f6e82912cf972018fb36
   openldap-devel-2.3.37-5.i686.rpm
       420013 dca94b4e95bb1466eb62112f40ae2e5f
   openldap-libs-2.3.37-5.i686.rpm
       296280 c2e9d282a2b3c22491f28886c1608789
   openldap-servers-2.3.37-5.i686.rpm
      1624920 535d7cb3a8937feb45ad67b259f20990

 <Turbolinux Appliance Server 2.0>

   Source Packages
   Size: MD5

   openldap-2.2.15-15.src.rpm
      2594840 8f38666520815e7db543b3c6a35c18a3

   Binary Packages
   Size: MD5

   openldap-2.2.15-15.i586.rpm
       643764 e25504f6145774886ff640b82fa7ebd7
   openldap-devel-2.2.15-15.i586.rpm
       253562 fc4df6187773ba378087bd20b7bb180b
   openldap-libs-2.2.15-15.i586.rpm
       165463 b989ea40d1d264a3216be306e0b2605f
   openldap-servers-2.2.15-15.i586.rpm
       472261 a0e6d92255951fa88c51b19a8f9ef36e

 <Turbolinux 10 Server x64 Edition>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/SRPMS/openldap-2.2.18-10.src.rpm
      2594314 9ded88e7bba7fe071641fc4d6fbf3bb4
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/SRPMS/openldap-32bit-2.2.15-15_2008110501.src.rpm
       772931 39daff25483b658d03ee5166a22d7a31

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/openldap-2.2.18-10.x86_64.rpm
       646336 42f30de152cd1808fbaa49048b49e630
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/openldap-32bit-2.2.15-15_2008110501.x86_64.rpm
       260085 cdaf7cfe45261b9e0312457a5409228e
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/openldap-debug-2.2.18-10.x86_64.rpm
       659040 926a58f21770226c08812a2fa65d43bb
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/openldap-devel-2.2.18-10.x86_64.rpm
       269559 4bd91f6f5be4c43a593dd956364b57b4
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/openldap-libs-2.2.18-10.x86_64.rpm
       192358 0f282abf95f863338e18860da7328807
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/openldap-servers-2.2.18-10.x86_64.rpm
       516177 c97528c14d59f990e6563a6af4d2b1f5

 <Turbolinux 10 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/SRPMS/openldap-2.2.15-15.src.rpm
      2594840 8f38666520815e7db543b3c6a35c18a3

   Binary Packages
   Size: MD5

   openldap-2.2.15-15.i586.rpm
       643764 e25504f6145774886ff640b82fa7ebd7
   openldap-debug-2.2.15-15.i586.rpm
       663197 a8ec3846f617526678a6263b0f849969
   openldap-devel-2.2.15-15.i586.rpm
       253562 fc4df6187773ba378087bd20b7bb180b
   openldap-libs-2.2.15-15.i586.rpm
       165463 b989ea40d1d264a3216be306e0b2605f
   openldap-servers-2.2.15-15.i586.rpm
       472261 a0e6d92255951fa88c51b19a8f9ef36e


 References:

 CVE
   [CVE-2007-5707]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5707
   [CVE-2007-5708]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5708
   [CVE-2007-6698]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6698
   [CVE-2008-0658]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0658
   [CVE-2008-2952]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2952

 --------------------------------------------------------------------------
 Revision History
    05 Nov 2008 Initial release
 --------------------------------------------------------------------------

 Copyright(C) 2008 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkkRZicACgkQK0LzjOqIJMw5QwCbBofFgrm+h3bT9Umsjlg5zj4D
+qIAn10YYAZX/iUVMVn4zWJR2rTqvWhZ
=opJ9
-----END PGP SIGNATURE-----

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe

© 1998-2019 E-Soft Inc. All rights reserved.