CVE-2007-5708

Priority
Description
slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP before 2.3.39, when
running as a proxy-caching server, allocates memory using a malloc variant
instead of calloc, which prevents an array from being initialized properly
and might allow attackers to cause a denial of service (segmentation fault)
via unknown vectors that prevent the array from being null terminated.
Notes
 jdstrand> initial inspection show this to be a reliability fix
 jdstrand> openldap2 source package does not ship slapd
Assigned-to
jdstrand
Package
Upstream:needed
Package
Upstream:released (2.2.39)
Package
Upstream:released (2.3.39)
More Information

Updated: 2019-03-19 11:44:08 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)