oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request -- OpenLDAP -- two issues

From: Josh Bressers <bressers () redhat com>
Date: Fri, 25 Feb 2011 11:18:08 -0500 (EST)
----- Original Message -----

Hello Josh, Steve, vendors,

looks like the following two issues did not get a CVE identifiers yet:
[1] http://secunia.com/advisories/43331/


The above advisory covers both bugs below.



[2] http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607


CVE-2011-1024 openldap forwarded bind failure messages cause success



[3] http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6661


CVE-2011-1025 openldap rootpw is not verified with slapd.conf


Thanks.

-- 
    JB
Previous By Date Next
Previous By Thread Next

Current thread: