Red Hat Bugzilla – Bug 202691
CVE-2006-1470 OpenLDAP Denial of Service
Last modified: 2014-08-31 19:28:25 EDT
Needed for FC6
+++ This bug was initially created as a clone of Bug #197278 +++
OpenLDAP Denial of Service
A denial of service bug was found in the way OpenLDAP processes
certain messages. It is possible for an unauthenticated remote
attacker to crash the OpenLDAP slapd server.
The original advisories are here:
This issue also affects FC4
-- Additional comment from email@example.com on 2006-08-15 10:39 EST --
Mu Security reported a denial-of-service vulnerability in Mac OS X's
OpenLDAP slapd. The issue was caused by assertions in the message
processing code--- some "default:" labels were handled with "assert()".
This is the kind of thing:
1087 case LDAP_REQ_EXTENDED:
1088 INCR_OP(num_ops_initiated_, SLAP_OP_EXTENDED);
1089 rc = do_extended( op, &rs );
1093 /* not reachable */
1094 assert( 0 );
Affected versions include at least 2.2.19 and 2.3.24.
The code in FC6 is not vulnerable to this issue.