Secunia - Stay Secure
Gartner
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


Fedora update for openldap Advisory Available in Danish  Advisory Available in German 

Secunia Advisory: SA27683  
Release Date: 2007-11-16
Last Update: 2007-11-21

Critical:
Less critical
Impact: DoS
Where: From remote
Solution Status: Vendor Patch

OS:Fedora 7
Fedora Core 6


CVE reference:CVE-2007-5707 (Secunia mirror)
CVE-2007-5708 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
Fedora has issued an update for openldap. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service).

For more information:
SA27424

Solution:
Apply updated packages.

-- Fedora Core 6 --

f03077342ed97a38865707df4895dee2312706ad SRPMS/openldap-2.3.30-3.fc6.src.rpm
f03077342ed97a38865707df4895dee2312706ad noarch/openldap-2.3.30-3.fc6.src.rpm
99b4d2c7f99928e66f75d3e7ff7f373e0086eeec ppc/openldap-servers-2.3.30-3.fc6.ppc.rpm
f177daf8d4a4a4ec9dadb7230c9cf869c1b0b8db ppc/debug/openldap-debuginfo-2.3.30-3.fc6.ppc.rpm
4e930938257c1218f707c52e205b3a4dbc715f9c ppc/openldap-2.3.30-3.fc6.ppc.rpm
7c801e813dd5ab0e6d2355077d7606f09062af00 ppc/openldap-devel-2.3.30-3.fc6.ppc.rpm
f51debe139b4aee48d651f6f3b12cd9b70f971f6 ppc/openldap-clients-2.3.30-3.fc6.ppc.rpm
0769d5ef10c6320c7c2daa21df21851ba966c305 ppc/compat-openldap-2.3.30_2.2.29-3.fc6.ppc.rpm
5eb1003dbfaa96cdd8f61940cd2ddfde42235663 ppc/openldap-servers-sql-2.3.30-3.fc6.ppc.rpm
0167be3ec360fbd0af9863e737ea2f3f80cb7412 x86_64/openldap-servers-sql-2.3.30-3.fc6.x86_64.rpm
7800fa60d44c6908d3784a6f8a7ccf83acfe1d9c x86_64/openldap-2.3.30-3.fc6.x86_64.rpm
6feb59c68017ee1c2c1495f87e95b996d989a7f2 x86_64/compat-openldap-2.3.30_2.2.29-3.fc6.x86_64.rpm
92531ec489d55749785947597bbb6d0adf1858f3 x86_64/debug/openldap-debuginfo-2.3.30-3.fc6.x86_64.rpm
b2becdfc1d0f5b5f4d1fc7543caa0d7afca56148 x86_64/openldap-servers-2.3.30-3.fc6.x86_64.rpm
b5960db0fe475c0e10aa270331c9c01d44af4627 x86_64/openldap-devel-2.3.30-3.fc6.x86_64.rpm
41f9b263bb016fda510a7b053cc11db8206c40f5 x86_64/openldap-clients-2.3.30-3.fc6.x86_64.rpm
0f5314ebb7031cb0cb2e1275414f2cd1d83875ef i386/openldap-clients-2.3.30-3.fc6.i386.rpm
dc4eb6f2028f367076e9bd07fd6a65c1c40f8216 i386/openldap-servers-2.3.30-3.fc6.i386.rpm
d138bb2f711e6cf58012fa297d2a9f654208c2cc i386/openldap-devel-2.3.30-3.fc6.i386.rpm
c4be4fc506ffe420ec12a5e0a89b72ce43f9e8d1 i386/openldap-2.3.30-3.fc6.i386.rpm
0a924f4017ba5aa82dada6b30da68cc1dbd09545 i386/compat-openldap-2.3.30_2.2.29-3.fc6.i386.rpm
4f805f9b1d7e0ac0b968614103bde7984f85aebf i386/debug/openldap-debuginfo-2.3.30-3.fc6.i386.rpm
b133dcf7a8f856a3c7bd1040eb9b4e7edbe6d17d i386/openldap-servers-sql-2.3.30-3.fc6.i386.rpm

-- Fedora 7 --

f9696ad13439140de92a68b80a507baf6830524c openldap-devel-2.3.34-4.fc7.ppc64.rpm
89e3c4f06df30bf99f6e7fde7e7efc9b0c70579d openldap-2.3.34-4.fc7.ppc64.rpm
0d7dc04c6517b4021b15339b9cec18b67a035b4f openldap-servers-sql-2.3.34-4.fc7.ppc64.rpm
d7671aa239e85528b2e28d229a98cf01db62b114 compat-openldap-2.3.34_2.2.29-4.fc7.ppc64.rpm
1e3ee7e4821d23f07daa29d9d60c1ad2583426d6 openldap-servers-2.3.34-4.fc7.ppc64.rpm
9972f80187ae6983b08f46b6c1ea3a90e29486b5 openldap-debuginfo-2.3.34-4.fc7.ppc64.rpm
ffa95a11b24434c9e83f3e18aa218444cade9e1b openldap-clients-2.3.34-4.fc7.ppc64.rpm
3236da1732e025bf033435ce2ee43affcb82ce95 openldap-servers-sql-2.3.34-4.fc7.i386.rpm
6d3ecc623d714d28c2e8f9674ed07799e7777d53 openldap-2.3.34-4.fc7.i386.rpm
4a29334d696ca2c3f4cafc7f8a12598ef894aa9f openldap-servers-2.3.34-4.fc7.i386.rpm
a507ef511f0124cf13ddcf4f93b73fa352b31ef6 openldap-devel-2.3.34-4.fc7.i386.rpm
723000a099d1f9865db5f93632faa83fdffbf01c openldap-clients-2.3.34-4.fc7.i386.rpm
ac6c3e7ab1101be2fae6f489934c9bcd52efe5e1 compat-openldap-2.3.34_2.2.29-4.fc7.i386.rpm
b77f0ad77f23b17b04facf1632025d8683a9a7fb openldap-debuginfo-2.3.34-4.fc7.i386.rpm
29bca3d3b8fc523897cc12b0eaf51918b7bcd913 openldap-devel-2.3.34-4.fc7.x86_64.rpm
af06d738f8245f6e352b34b279b455b8c3843496 openldap-servers-2.3.34-4.fc7.x86_64.rpm
bbbfb28e1dd87e6a784fce14a13c1ed5b32233cf openldap-2.3.34-4.fc7.x86_64.rpm
e36fc33bb1cd1c1e5b118daffdd40e8364e0aa82 openldap-servers-sql-2.3.34-4.fc7.x86_64.rpm
d8bb6917a10e8ead905ab5588a2087a225823f2a openldap-debuginfo-2.3.34-4.fc7.x86_64.rpm
dfcf8316819e8e6d460966504fe6116f02689b83 compat-openldap-2.3.34_2.2.29-4.fc7.x86_64.rpm
fe7dcc47bd6f6faee43d868a5ff110d53e507bc0 openldap-clients-2.3.34-4.fc7.x86_64.rpm
e67c4d0846065f538b87b31bd0603412edf5f927 openldap-servers-2.3.34-4.fc7.ppc.rpm
78c9672a67fe4b52af26f1a035313d2edda12c15 openldap-servers-sql-2.3.34-4.fc7.ppc.rpm
8792e63c63cacba61e9af019a66fc8f62be767ec openldap-2.3.34-4.fc7.ppc.rpm
10d18f504a6ac3184fa33a99fca806b31b3a03f5 openldap-clients-2.3.34-4.fc7.ppc.rpm
b98bfa192ae7c5360f53ebc49e0abc1c7ddb1756 openldap-devel-2.3.34-4.fc7.ppc.rpm
debd40ab305eb19b7b476f46ab6f579afb758dfa compat-openldap-2.3.34_2.2.29-4.fc7.ppc.rpm
bae3922b13dcc83442609651f04ff9dc0437afcb openldap-debuginfo-2.3.34-4.fc7.ppc.rpm
c3d984d11cd9ac3beee4388d23e95200ac7d2626 openldap-2.3.34-4.fc7.src.rpm

Changelog:
2007-11-21: Added "Fedora 7" to the list of affected products. Updated the "Solution" and "Original Advisory" sections.

Original Advisory:
https://www.redhat.com/archives/fedor...-announce/2007-November/msg00460.html
https://www.redhat.com/archives/fedor...-announce/2007-November/msg00567.html

Other References:
SA27424:
http://secunia.com/advisories/27424/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

292 Related Secunia Security Advisories, displaying 10

1. Fedora update for roundcubemail
2. Fedora update for xorg-x11-server
3. Fedora update for kronolith
4. Fedora update for net-snmp
5. Fedora update for openoffice.org
6. Fedora update for evolution
7. Fedora update for snort
8. Fedora update for libpng
9. Fedora update for imlib2
10. Fedora update for samba

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
Linux Kernel LDT Buffer Size Handling Vulnerability
2.
OpenBSD BIND Query Port DNS Cache Poisoning
3.
Drupal Session Fixation Vulnerability
4.
Red Hat update for thunderbird
5.
Apple Safari Cross-Domain Cookie Injection Vulnerability
6.
IPCop update for perl
7.
Slackware update for dnsmasq
8.
Red Hat update for kernel
9.
Ubuntu update for php
10.
dnsmasq Denial of Service and DNS Cache Poisoning





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia