oss-sec mailing list archives
Re: CVE Request -- OpenLDAP -- two issues
From: Josh Bressers <bressers () redhat com>
Date: Fri, 25 Feb 2011 11:18:08 -0500 (EST)
----- Original Message -----
Hello Josh, Steve, vendors, looks like the following two issues did not get a CVE identifiers yet: [1] http://secunia.com/advisories/43331/
The above advisory covers both bugs below.
[2] http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607
CVE-2011-1024 openldap forwarded bind failure messages cause success
[3] http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6661
CVE-2011-1025 openldap rootpw is not verified with slapd.conf Thanks. -- JB
Current thread:
- CVE Request -- OpenLDAP -- two issues Jan Lieskovsky (Feb 24)
- Re: CVE Request -- OpenLDAP -- two issues Josh Bressers (Feb 25)
- Re: CVE Request -- OpenLDAP -- two issues Thomas Biege (Feb 28)
- Re: CVE Request -- OpenLDAP -- two issues Vincent Danen (Feb 28)
- Re: CVE Request -- OpenLDAP -- two issues Ralf Haferkamp (Mar 01)
- Re: CVE Request -- OpenLDAP -- two issues Vincent Danen (Mar 01)
- Re: CVE Request -- OpenLDAP -- two issues Thomas Biege (Feb 28)
- Re: CVE Request -- OpenLDAP -- two issues Josh Bressers (Mar 01)
- Re: CVE Request -- OpenLDAP -- two issues Josh Bressers (Feb 25)