Debian DSA-2077-1 : openldap - several vulnerabilities

medium Nessus Plugin ID 48220

Language:

Synopsis

The remote Debian host is missing a security-related update.

Description

Two remote vulnerabilities have been discovered in OpenLDAP. The Common Vulnerabilities and Exposures project identifies the following problems :

- CVE-2010-0211 The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences.

- CVE-2010-0212 OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call with a zero-length RDN destination string.

Solution

Upgrade the openldap packages.

For the stable distribution (lenny), this problem has been fixed in version 2.4.11-1+lenny2. (The missing update for the mips architecture will be provided soon.)

See Also

https://security-tracker.debian.org/tracker/CVE-2010-0211

https://security-tracker.debian.org/tracker/CVE-2010-0212

https://www.debian.org/security/2010/dsa-2077

Plugin Details

Severity: Medium

ID: 48220

File Name: debian_DSA-2077.nasl

Version: 1.10

Type: local

Agent: unix

Published: 8/3/2010

Updated: 1/4/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent

Risk Information

VPR

Risk Factor: Medium

Score: 5.1

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: E:POC/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:openldap, cpe:/o:debian:debian_linux:5.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 7/29/2010

Exploitable With

Core Impact

Reference Information

CVE: CVE-2010-0211, CVE-2010-0212

BID: 41770

DSA: 2077