openldap2: The New OpenLDAP Server (LDAPv3)
----------------------------------------------------------------------
File: openldap2-2.3.27-34.ppc.rpm
Patchrpm: openldap2-2.3.27-34.ppc.patch.rpm
Version: 2.3.27-34
Size: 1286 kB
Patchsize: 727 kB
Date: Wed 13 Aug 2008 2:31:27 CEST
Source: openldap2-2.3.27-34.src.rpm
Security: Yes
----------------------------------------------------------------------
Description: This update fixes a security problem in the liblber client library of
openldap that allowed remote attackers to cause a denial of service
(program termination) via crafted ASN.1 BER datagrams, which triggers
an assertion error. (CVE-2008-2952)
Additionally a bug was fixed in ldap_free_connection which could result in client crashes when the server closed a connection while an operation is active.