Bug 37729

Summary: openldap: Denial of service (4.0)
Product: UCS Reporter: Moritz Muehlenhoff <jmm>
Component: Security updatesAssignee: Moritz Muehlenhoff <jmm>
Status: CLOSED FIXED QA Contact: Janek Walkenhorst <walkenhorst>
Severity: normal    
Priority: P4 CC: best
Version: UCS 4.0   
Target Milestone: UCS 4.0-1-errata   
Hardware: Other   
OS: Linux   
What kind of report is it?: --- What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional):
Max CVSS v3 score:
Bug Depends on:    
Bug Blocks: 46794    

Description Moritz Muehlenhoff univentionstaff 2015-02-09 08:45:45 CET 
If the slapo-deref overlay is used (which is not the case in a standard UCS installation) and if the list of attributes to be dereferenced is left empty, slapd can be crashed (CVE-2015-1545)
Comment 1 Moritz Muehlenhoff univentionstaff 2015-02-09 08:51:37 CET 
UCS 4.0 is affected by an additional denial of service issue, which affects the standard UCS configuration (CVE-2015-1546).
Comment 2 Moritz Muehlenhoff univentionstaff 2015-02-09 14:29:28 CET 
Patches for these issues have been applied. I can no longer reproduce the slapd crash of CVE-2015-1546 with the updated package.

YAML file: 2015-02-09-openldap.yaml
Comment 3 Janek Walkenhorst univentionstaff 2015-02-09 18:28:35 CET 
Tests: OK
Advisory: OK
Comment 4 Moritz Muehlenhoff univentionstaff 2015-02-10 14:20:08 CET 
http://errata.univention.de/ucs/4.0/82.html