Mandriva Linux Security Advisory : openldap (MDVSA-2015:074)
Medium Nessus Plugin ID 82327
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability has been discovered and corrected in openldap :
The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty attribute list in a deref control in a search request (CVE-2015-1545).
The updated packages provides a solution for these security issues.
SolutionUpdate the affected packages.