|Category:||Red Hat Local Security Checks|
|Title:||RedHat Security Advisory RHSA-2008:0583|
The remote host is missing updates announced in
OpenLDAP is an open source suite of Lightweight Directory Access Protocol
(LDAP) applications and development tools. LDAP is a set of protocols for
accessing directory services.
A denial of service flaw was found in the way the OpenLDAP slapd daemon
processed certain network messages. An unauthenticated remote attacker
could send a specially crafted request that would crash the slapd daemon.
Users of openldap should upgrade to these updated packages, which contain a
backported patch to correct this issue.
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date
Risk factor : Medium
Common Vulnerability Exposure (CVE) ID: CVE-2008-2952|
BugTraq ID: 30013
Bugtraq: 20080811 rPSA-2008-0249-1 openldap openldap-clients openldap-servers (Google Search)
Debian Security Information: DSA-1650 (Google Search)
SuSE Security Announcement: SUSE-SR:2008:021 (Google Search)
XForce ISS Database: openldap-bergetnext-dos(43515)
|Copyright||Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.