Scientific Linux Security Update : openldap on SL5.x i386/x86_64
Medium Nessus Plugin ID 72680
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA denial of service flaw was found in the way the OpenLDAP server daemon (slapd) performed reference counting when using the rwm (rewrite/remap) overlay. A remote attacker able to query the OpenLDAP server could use this flaw to crash the server by immediately unbinding from the server after sending a search request.
SolutionUpdate the affected packages.