Ubuntu
openldap package

OpenLDAP remote DoS: CVE-2011-1081

Bug #742104 reported by Quanah Gibson-Mount
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
openldap (Ubuntu)
Fix Released
Medium
Jamie Strandboge
Ubuntu ubuntu-11.04-beta-2
Hardy
Fix Released
Medium
Jamie Strandboge
Karmic
Fix Released
Medium
Jamie Strandboge
Lucid
Fix Released
Medium
Jamie Strandboge
Maverick
Fix Released
Medium
Jamie Strandboge
Natty
Fix Released
Medium
Jamie Strandboge
Ubuntu ubuntu-11.04-beta-2

Bug Description

It is possible to crash openldap using an unauthenticated modrdn operation. See

http://www.openldap.org/its/index.cgi/?findid=6768

This is fixed by:
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?hideattic=1&r1=text&tr1=1.181&r2=text&tr2=1.182&f=c

You may wish to file a bug with Debian, since I can't find a way to do it that doesn't report some tool to do so, and all my systems are firewalled.

Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Thank you for using Ubuntu and reporting a bug. Packages are already being prepared to address this vulnerability.

visibility: private → public
Changed in openldap (Ubuntu):
assignee: nobody → Jamie Strandboge (jdstrand)
status: New → In Progress
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-March/001293.html

Changed in openldap (Ubuntu Lucid):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Maverick):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Hardy):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Karmic):
status: New → Fix Released
importance: Undecided → Medium
assignee: nobody → Jamie Strandboge (jdstrand)
Changed in openldap (Ubuntu Natty):
importance: Undecided → Medium
milestone: none → ubuntu-11.04-beta-2
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package openldap - 2.4.23-6ubuntu6

---------------
openldap (2.4.23-6ubuntu6) natty; urgency=low

  * SECURITY UPDATE: fix successful anonymous bind via chain overlay when
    using forwarded authentication failures
    - debian/patches/CVE-2011-1024
    - CVE-2011-1024
  * SECURITY UPDATE: verify password when authenticating to rootdn and using ndb
    backend. Note: Ubuntu is not compiled with --enable-ndb by default
    - debian/patches/CVE-2011-1025
    - CVE-2011-1025
  * SECURITY UPDATE: fix DoS when processing unauthenticated modrdn requests
    and requestDN is empty
    - debian/patches/CVE-2011-1081
    - CVE-2011-1081
    - LP: #742104
 -- Jamie Strandboge <email address hidden> Thu, 07 Apr 2011 11:36:53 -0500

Changed in openldap (Ubuntu Natty):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.