Secunia Logo
Netsikker nu! 2008
 
Mandriva update for nss_ldap / pam_ldap
Secunia Advisory: SA16113
Release Date: 2005-07-19
Popularity: 5,198 views

Critical:
Less critical
Impact: Exposure of sensitive information
Where: From local network
Solution Status: Vendor Patch

OS:Mandrake Corporate Server 2.x
Mandrakelinux 10.0
Mandrakelinux 10.1

Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2005-2069


Description:
Mandriva has issued an update for nss_ldap / pam_ldap. This fixes a security issue, which can be exploit by malicious people to gain knowledge of sensitive information.

For more information:
SA15906

Solution:
Apply updated packages.

Mandrakelinux 10.0:

914dcae90f53c038cfc011abe891ab4d 10.0/RPMS/nss_ldap-212-4.1.100mdk.i586.rpm
072543f7406517e0515d35d39e5f5f40 10.0/RPMS/pam_ldap-167-4.1.100mdk.i586.rpm
541c2b177143c43b743b8d3fe5509ea9 10.0/SRPMS/nss_ldap-212-4.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:

5235319856a96b9a1ef18a2913f6adcf amd64/10.0/RPMS/nss_ldap-212-4.1.100mdk.amd64.rpm
20aa9281762673b4ff2a79e4c108faf8 amd64/10.0/RPMS/pam_ldap-167-4.1.100mdk.amd64.rpm
541c2b177143c43b743b8d3fe5509ea9 amd64/10.0/SRPMS/nss_ldap-212-4.1.100mdk.src.rpm

Mandrakelinux 10.1:

b0e26a28478136804d4aeb39d44c8d82 10.1/RPMS/nss_ldap-220-3.1.101mdk.i586.rpm
700a3f02f035626e93fe9de327df9d52 10.1/RPMS/pam_ldap-170-3.1.101mdk.i586.rpm
0292807cd0a28d55ca8e59489761bf25 10.1/SRPMS/nss_ldap-220-3.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:

707a0491faf0022727255c56dc14c508 x86_64/10.1/RPMS/nss_ldap-220-3.1.101mdk.x86_64.rpm
066cfd679a2d6ccb8f2f04cc223c8cb9 x86_64/10.1/RPMS/pam_ldap-170-3.1.101mdk.x86_64.rpm
0292807cd0a28d55ca8e59489761bf25 x86_64/10.1/SRPMS/nss_ldap-220-3.1.101mdk.src.rpm

Corporate Server 2.1:

2afb0b0dbd3b0ed51a2b62d8387f09f4 corporate/2.1/RPMS/nss_ldap-202-1.3.C21mdk.i586.rpm
bdec2ce99957b1018084b04a8d27b18d corporate/2.1/RPMS/pam_ldap-156-1.3.C21mdk.i586.rpm
b8b51a75d94c7fdbfce141f8eb634059 corporate/2.1/SRPMS/nss_ldap-202-1.3.C21mdk.src.rpm

Corporate Server 2.1/X86_64:

ce833d0b6359c54b8bd6337e65fb85fa x86_64/corporate/2.1/RPMS/nss_ldap-202-1.3.C21mdk.x86_64.rpm
6ed783d9f1581a9e736b09d3d8ceebeb x86_64/corporate/2.1/RPMS/pam_ldap-156-1.3.C21mdk.x86_64.rpm
b8b51a75d94c7fdbfce141f8eb634059 x86_64/corporate/2.1/SRPMS/nss_ldap-202-1.3.C21mdk.src.rpm

Original Advisory:
http://www.mandriva.com/security/advisories?name=MDKSA-2005:121

Other References:
SA15906:
http://secunia.com/advisories/15906/


Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. phpBB "gen_rand_string()" Predictable RNG Weakness // 92 views
2. Zeroboard Multiple Vulnerabilities // 52 views
3. ArticleBeach Script "page" File Inclusion Vulnerability // 43 views
4. Zeroboard Two Vulnerabilities // 40 views
5. Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow // 32 views
6. CA ARCserve Backup Multiple Vulnerabilities // 31 views
7. CUPS Multiple Vulnerabilities // 26 views
8. Apple Mac OS X Security Update Fixes Multiple Vulnerabilities // 25 views
9. DFF PHP Framework API "DFF_config[dir_include]" File Inclusion Vulnerabilities // 24 views
10. ScriptsEz Easy Image Downloader "id" File Disclosure Vulnerability // 23 views