Back to search
CVE-2007-5708
Published: Oct 30, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP before 2.3.39, when running as a proxy-caching server, allocates memory using a malloc variant instead of calloc, which prevents an array from being initialized properly and might allow attackers to cause a denial of service (segmentation fault) via unknown vectors that prevent the array from being null terminated.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
27683
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:058
vendor-advisory
x_refsource_MANDRIVA
29461
third-party-advisory
x_refsource_SECUNIA
29225
third-party-advisory
x_refsource_SECUNIA
29682
third-party-advisory
x_refsource_SECUNIA
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=5163
x_refsource_MISC
27756
third-party-advisory
x_refsource_SECUNIA
GLSA-200803-28
vendor-advisory
x_refsource_GENTOO
DSA-1541
vendor-advisory
x_refsource_DEBIAN
SUSE-SR:2007:024
vendor-advisory
x_refsource_SUSE
[openldap-announce] 20071026 OpenLDAP 2.3.39 available
mailing-list
x_refsource_MLIST
27424
third-party-advisory
x_refsource_SECUNIA
USN-551-1
vendor-advisory
x_refsource_UBUNTU
ADV-2007-3645
vdb-entry
x_refsource_VUPEN
26245
vdb-entry
x_refsource_BID
FEDORA-2007-741
vendor-advisory
x_refsource_FEDORA
27868
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now