CentOS Update For Compat-openldap CESA-2008:0583 Centos4 X86_64 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

OpenLDAP is an open source suite of Lightweight Directory Access Protocol (LDAP) applications and development tools. LDAP is a set of protocols for accessing directory services. A denial of service flaw was found in the way the OpenLDAP slapd daemon processed certain network messages. An unauthenticated remote attacker could send a specially crafted request that would crash the slapd daemon. (CVE-2008-2952) Users of openldap should upgrade to these updated packages, which contain a backported patch to correct this issue.

Affected

compat-openldap on CentOS 4

References

http://lists.centos.org/pipermail/centos-announce/2008-July/015109.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-2952

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:1529 (samba)
CentOS Security Advisory CESA-2009:1238 (dnsmasq)
CentOS Security Advisory CESA-2009:1124 (net-snmp)
CentOS Security Advisory CESA-2009:1036 (ipsec-tools)
CentOS Update for acpid CESA-2009:0474 centos4 i386

CentOS Update for compat-openldap CESA-2008:0583 centos4 x86_64

Take action and discover your vulnerabilities