|
|
>> Fedora Security Update Fixes OpenLDAP Denial of Service Vulnerabilities
|
Title : Fedora Security Update Fixes OpenLDAP Denial of Service Vulnerabilities
VUPEN ID : VUPEN/ADV-2007-3947
CVE ID : CVE-2007-5707 - CVE-2007-5708
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-11-21
|
Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to cause a denial of service. These issues are caused by errors in OpenLDAP. For additional information, see : VUPEN/ADV-2007-3645
Affected Products
Fedora 7
Solution
Upgrade the affected packages :
f9696ad13439140de92a68b80a507baf6830524c openldap-devel-2.3.34-4.fc7.ppc64.rpm
89e3c4f06df30bf99f6e7fde7e7efc9b0c70579d openldap-2.3.34-4.fc7.ppc64.rpm
0d7dc04c6517b4021b15339b9cec18b67a035b4f openldap-servers-sql-2.3.34-4.fc7.ppc64.rpm
d7671aa239e85528b2e28d229a98cf01db62b114 compat-openldap-2.3.34_2.2.29-4.fc7.ppc64.rpm
1e3ee7e4821d23f07daa29d9d60c1ad2583426d6 openldap-servers-2.3.34-4.fc7.ppc64.rpm
9972f80187ae6983b08f46b6c1ea3a90e29486b5 openldap-debuginfo-2.3.34-4.fc7.ppc64.rpm
ffa95a11b24434c9e83f3e18aa218444cade9e1b openldap-clients-2.3.34-4.fc7.ppc64.rpm
3236da1732e025bf033435ce2ee43affcb82ce95 openldap-servers-sql-2.3.34-4.fc7.i386.rpm
6d3ecc623d714d28c2e8f9674ed07799e7777d53 openldap-2.3.34-4.fc7.i386.rpm
4a29334d696ca2c3f4cafc7f8a12598ef894aa9f openldap-servers-2.3.34-4.fc7.i386.rpm
a507ef511f0124cf13ddcf4f93b73fa352b31ef6 openldap-devel-2.3.34-4.fc7.i386.rpm
723000a099d1f9865db5f93632faa83fdffbf01c openldap-clients-2.3.34-4.fc7.i386.rpm
ac6c3e7ab1101be2fae6f489934c9bcd52efe5e1 compat-openldap-2.3.34_2.2.29-4.fc7.i386.rpm
b77f0ad77f23b17b04facf1632025d8683a9a7fb openldap-debuginfo-2.3.34-4.fc7.i386.rpm
29bca3d3b8fc523897cc12b0eaf51918b7bcd913 openldap-devel-2.3.34-4.fc7.x86_64.rpm
af06d738f8245f6e352b34b279b455b8c3843496 openldap-servers-2.3.34-4.fc7.x86_64.rpm
bbbfb28e1dd87e6a784fce14a13c1ed5b32233cf openldap-2.3.34-4.fc7.x86_64.rpm
e36fc33bb1cd1c1e5b118daffdd40e8364e0aa82 openldap-servers-sql-2.3.34-4.fc7.x86_64.rpm
d8bb6917a10e8ead905ab5588a2087a225823f2a openldap-debuginfo-2.3.34-4.fc7.x86_64.rpm
dfcf8316819e8e6d460966504fe6116f02689b83 compat-openldap-2.3.34_2.2.29-4.fc7.x86_64.rpm
fe7dcc47bd6f6faee43d868a5ff110d53e507bc0 openldap-clients-2.3.34-4.fc7.x86_64.rpm
e67c4d0846065f538b87b31bd0603412edf5f927 openldap-servers-2.3.34-4.fc7.ppc.rpm
78c9672a67fe4b52af26f1a035313d2edda12c15 openldap-servers-sql-2.3.34-4.fc7.ppc.rpm
8792e63c63cacba61e9af019a66fc8f62be767ec openldap-2.3.34-4.fc7.ppc.rpm
10d18f504a6ac3184fa33a99fca806b31b3a03f5 openldap-clients-2.3.34-4.fc7.ppc.rpm
b98bfa192ae7c5360f53ebc49e0abc1c7ddb1756 openldap-devel-2.3.34-4.fc7.ppc.rpm
debd40ab305eb19b7b476f46ab6f579afb758dfa compat-openldap-2.3.34_2.2.29-4.fc7.ppc.rpm
bae3922b13dcc83442609651f04ff9dc0437afcb openldap-debuginfo-2.3.34-4.fc7.ppc.rpm
c3d984d11cd9ac3beee4388d23e95200ac7d2626 openldap-2.3.34-4.fc7.src.rpm
References
http://www.vupen.com/english/advisories/2007/3947
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00567.html
ChangeLog
2007-11-21 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
