Oval Definition:oval:org.mitre.oval:def:13722
Revision Date:2014-06-30Version:20
Title:USN-1100-1 -- openldap, openldap2.3 vulnerabilities
Description:It was discovered that OpenLDAP did not properly check forwarded authentication failures when using a slave server and chain overlay. If OpenLDAP were configured in this manner, an attacker could bypass authentication checks by sending an invalid password to a slave server. It was discovered that OpenLDAP did not properly perform authentication checks to the rootdn when using the back-ndb backend. An attacker could exploit this to access the directory by sending an arbitrary password. Ubuntu does not ship OpenLDAP with back-ndb support by default. This issue did not affect Ubuntu 8.04 LTS. It was discovered that OpenLDAP did not properly validate modrdn requests. An unauthenticated remote user could use this to cause a denial of service via application crash
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2011-1024
CVE-2011-1025
CVE-2011-1081
USN-1100-1
USN-1100-1
Platform(s):Ubuntu 10.04
Ubuntu 10.10
Ubuntu 8.04
Ubuntu 9.10
Product(s):openldap
openldap2.3
Definition Synopsis
  • Release section
  • Ubuntu 8.04 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is powerpc
  • AND Packages section
  • slapd-dbg DPKG is earlier than 2.4.9-0ubuntu0.8.04.5
  • OR libldap-2.4-2 DPKG is earlier than 2.4.9-0ubuntu0.8.04.5
  • OR libldap-2.4-2-dbg DPKG is earlier than 2.4.9-0ubuntu0.8.04.5
  • OR ldap-utils DPKG is earlier than 2.4.9-0ubuntu0.8.04.5
  • OR libldap2-dev DPKG is earlier than 2.4.9-0ubuntu0.8.04.5
  • OR slapd DPKG is earlier than 2.4.9-0ubuntu0.8.04.5
  • OR Release section
  • Ubuntu 10.10 is installed
  • AND Supported architectures section
  • Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is amd64
  • OR Installed architecture is powerpc
  • AND Packages section
  • slapd-dbg DPKG is earlier than 2.4.23-0ubuntu3.5
  • OR libldap-2.4-2 DPKG is earlier than 2.4.23-0ubuntu3.5
  • OR libldap-2.4-2-dbg DPKG is earlier than 2.4.23-0ubuntu3.5
  • OR ldap-utils DPKG is earlier than 2.4.23-0ubuntu3.5
  • OR libldap2-dev DPKG is earlier than 2.4.23-0ubuntu3.5
  • OR slapd DPKG is earlier than 2.4.23-0ubuntu3.5
  • OR Release section
  • Ubuntu 9.10 is installed
  • AND Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is armel
  • OR Installed architecture is lpia
  • AND Packages section
  • slapd-dbg DPKG is earlier than 2.4.18-0ubuntu1.2
  • OR libldap-2.4-2 DPKG is earlier than 2.4.18-0ubuntu1.2
  • OR libldap-2.4-2-dbg DPKG is earlier than 2.4.18-0ubuntu1.2
  • OR ldap-utils DPKG is earlier than 2.4.18-0ubuntu1.2
  • OR libldap2-dev DPKG is earlier than 2.4.18-0ubuntu1.2
  • OR slapd DPKG is earlier than 2.4.18-0ubuntu1.2
  • OR Release section
  • Ubuntu 10.04 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is amd64
  • OR Installed architecture is powerpc
  • AND Packages section
  • slapd-dbg DPKG is earlier than 2.4.21-0ubuntu5.4
  • OR libldap-2.4-2 DPKG is earlier than 2.4.21-0ubuntu5.4
  • OR libldap-2.4-2-dbg DPKG is earlier than 2.4.21-0ubuntu5.4
  • OR ldap-utils DPKG is earlier than 2.4.21-0ubuntu5.4
  • OR libldap2-dev DPKG is earlier than 2.4.21-0ubuntu5.4
  • OR slapd DPKG is earlier than 2.4.21-0ubuntu5.4
    • BACK