CVE-2007-5708 (retired)

Priority
Description
slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP before 2.3.39, when
running as a proxy-caching server, allocates memory using a malloc variant
instead of calloc, which prevents an array from being initialized properly
and might allow attackers to cause a denial of service (segmentation fault)
via unknown vectors that prevent the array from being null terminated.
Notes
 jdstrand> initial inspection show this to be a reliability fix
 jdstrand> openldap2 source package does not ship slapd
Assigned-to
jdstrand
Package
Upstream:needed
Package
Upstream:released (2.2.39)
Package
Upstream:released (2.3.39)
More Information

Updated: 2019-03-26 11:41:58 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)