|
|
>> Fedora Security Update Fixes OpenLDAP Denial of Service Vulnerabilities
|
Title : Fedora Security Update Fixes OpenLDAP Denial of Service Vulnerabilities
VUPEN ID : VUPEN/ADV-2007-3881
CVE ID : CVE-2007-5707 - CVE-2007-5708
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-11-16
|
Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to cause a denial of service. These issues are caused by errors in OpenLDAP. For additional information, see : VUPEN/ADV-2007-3645
Affected Products
Fedora Core 6
Solution
Upgrade the affected packages :
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/
f03077342ed97a38865707df4895dee2312706ad SRPMS/openldap-2.3.30-3.fc6.src.rpm
f03077342ed97a38865707df4895dee2312706ad noarch/openldap-2.3.30-3.fc6.src.rpm
99b4d2c7f99928e66f75d3e7ff7f373e0086eeec ppc/openldap-servers-2.3.30-3.fc6.ppc.rpm
f177daf8d4a4a4ec9dadb7230c9cf869c1b0b8db ppc/debug/openldap-debuginfo-2.3.30-3.fc6.ppc.rpm
4e930938257c1218f707c52e205b3a4dbc715f9c ppc/openldap-2.3.30-3.fc6.ppc.rpm
7c801e813dd5ab0e6d2355077d7606f09062af00 ppc/openldap-devel-2.3.30-3.fc6.ppc.rpm
f51debe139b4aee48d651f6f3b12cd9b70f971f6 ppc/openldap-clients-2.3.30-3.fc6.ppc.rpm
0769d5ef10c6320c7c2daa21df21851ba966c305 ppc/compat-openldap-2.3.30_2.2.29-3.fc6.ppc.rpm
5eb1003dbfaa96cdd8f61940cd2ddfde42235663 ppc/openldap-servers-sql-2.3.30-3.fc6.ppc.rpm
0167be3ec360fbd0af9863e737ea2f3f80cb7412 x86_64/openldap-servers-sql-2.3.30-3.fc6.x86_64.rpm
7800fa60d44c6908d3784a6f8a7ccf83acfe1d9c x86_64/openldap-2.3.30-3.fc6.x86_64.rpm
6feb59c68017ee1c2c1495f87e95b996d989a7f2 x86_64/compat-openldap-2.3.30_2.2.29-3.fc6.x86_64.rpm
92531ec489d55749785947597bbb6d0adf1858f3 x86_64/debug/openldap-debuginfo-2.3.30-3.fc6.x86_64.rpm
b2becdfc1d0f5b5f4d1fc7543caa0d7afca56148 x86_64/openldap-servers-2.3.30-3.fc6.x86_64.rpm
b5960db0fe475c0e10aa270331c9c01d44af4627 x86_64/openldap-devel-2.3.30-3.fc6.x86_64.rpm
41f9b263bb016fda510a7b053cc11db8206c40f5 x86_64/openldap-clients-2.3.30-3.fc6.x86_64.rpm
0f5314ebb7031cb0cb2e1275414f2cd1d83875ef i386/openldap-clients-2.3.30-3.fc6.i386.rpm
dc4eb6f2028f367076e9bd07fd6a65c1c40f8216 i386/openldap-servers-2.3.30-3.fc6.i386.rpm
d138bb2f711e6cf58012fa297d2a9f654208c2cc i386/openldap-devel-2.3.30-3.fc6.i386.rpm
c4be4fc506ffe420ec12a5e0a89b72ce43f9e8d1 i386/openldap-2.3.30-3.fc6.i386.rpm
0a924f4017ba5aa82dada6b30da68cc1dbd09545 i386/compat-openldap-2.3.30_2.2.29-3.fc6.i386.rpm
4f805f9b1d7e0ac0b968614103bde7984f85aebf i386/debug/openldap-debuginfo-2.3.30-3.fc6.i386.rpm
b133dcf7a8f856a3c7bd1040eb9b4e7edbe6d17d i386/openldap-servers-sql-2.3.30-3.fc6.i386.rpm
References
http://www.vupen.com/english/advisories/2007/3881
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00460.html
ChangeLog
2007-11-16 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
