Candidate: CVE-2015-1546
PublicDate: 2015-02-12 16:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1546
Description:
 Double free vulnerability in the get_vrFilter function in
 servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause
 a denial of service (crash) via a crafted search query with a matched
 values control.
Ubuntu-Description:
Notes:
 mdeslaur> 2.4.40 only
Bugs:
 http://www.openldap.org/its/?findid=8046
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776991
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_openldap:
 upstream: http://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=2f1a2dd329b91afe561cd06b872d09630d4edb6a
upstream_openldap: needs-triage
lucid_openldap: not-affected
precise_openldap: not-affected
trusty_openldap: not-affected
trusty/esm_openldap: not-affected
utopic_openldap: not-affected
devel_openldap: not-affected