OpenLDAP: Denial of Service vulnerability — GLSA 200808-09

A flaw in OpenLDAP allows remote unauthenticated attackers to cause a Denial of Service.

Affected packages

net-nds/openldap on all architectures
Affected versions < 2.3.43
Unaffected versions >= 2.3.43

Background

OpenLDAP Software is an open source implementation of the Lightweight Directory Access Protocol.

Description

Cameron Hotchkies discovered an error within the parsing of ASN.1 BER encoded packets in the "ber_get_next()" function in libraries/liblber/io.c.

Impact

A remote unauthenticated attacker can send a specially crafted ASN.1 BER encoded packet which will trigger the error and cause an "assert()", terminating the "slapd" daemon.

Workaround

There is no known workaround at this time.

Resolution

All OpenLDAP users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-nds/openldap-2.3.43"

References

Release date
August 08, 2008

Latest revision
August 08, 2008: 01

Severity
low

Exploitable
remote

Bugzilla entries