PublicDate: 2008-02-01 22:00:00 UTC
Candidate: CVE-2007-6698
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6698
 https://ubuntu.com/security/notices/USN-584-1
Description:
 The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote
 authenticated users to cause a denial of service (crash) via a
 potentially-successful modify operation with the NOOP control set to
 critical, possibly due to a double free vulnerability.
Ubuntu-Description:
Notes:
 jdstrand> openldap2 source package does not ship slapd
Bugs:
 https://bugs.launchpad.net/bugs/197077
Priority: medium
Discovered-by:
Assigned-to: jdstrand
CVSS: 

Patches_openldap2.3:
 vendor: https://rhn.redhat.com/errata/RHSA-2008-0110.html
upstream_openldap2.3: needs-triage
dapper_openldap2.3: DNE
edgy_openldap2.3: DNE
feisty_openldap2.3: released (2.3.30-2ubuntu0.2)
gutsy_openldap2.3: released (2.3.35-1ubuntu0.2)
devel_openldap2.3: not-affected

Patches_openldap2.2:
upstream_openldap2.2: needs-triage
dapper_openldap2.2: released (2.2.26-5ubuntu2.6)
edgy_openldap2.2: released (2.2.26-5ubuntu3.3)
feisty_openldap2.2: DNE
gutsy_openldap2.2: DNE
devel_openldap2.2: DNE

Patches_openldap2:
upstream_openldap2: needs-triage
dapper_openldap2: ignored
edgy_openldap2: ignored
feisty_openldap2: ignored
gutsy_openldap2: ignored
devel_openldap2: ignored