openldap
Page content
- Vulnerable: 2.3.41-1
- Unaffected: 2.3.43-1kalgan1
A vulnerability has been reported in OpenLDAP, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the “ber_get_next()” function in libraries/liblber/io.c. This can be exploited to trigger an “assert()” and terminate the “slapd” process via a specially crafted ASN.1 BER encoded packet.
- Bug Tracker URL: http://bugs.frugalware.org/task/3207