+++ This bug was initially created as a clone of Bug #829317 +++ Description of problem: The buffer allocated for reading password (pin) file has to be initialized with zeros, or we need to append zero at the end of the file. Otherwise we might read initialized memory and consider it to be a password. In this situation, all incoming TLS connections can hang. Reported upstream: http://www.openldap.org/its/index.cgi?findid=7291 Patch submitted upstream: ftp://ftp.openldap.org/incoming/jvcelak-20120606-moznss-read-pin-from-file-infinite-loop.patch Version-Release number of selected component (if applicable): any How reproducible: Not always, depends on what malloc() gives us when allocating the buffer for the password. Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Resolved in: openldap-2.4.23-29.el6
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-0364.html