Oval Definition:	oval:org.mitre.oval:def:21137
Revision Date: 2014-02-24 Version: 11 Title: RHSA-2012:0683: bind-dyndb-ldap security update (Important) Description: The handle_connection_error function in ldap_helper.c in bind-dyndb-ldap before 1.1.0rc1 does not properly handle LDAP query errors, which allows remote attackers to cause a denial of service (infinite loop and named server hang) via a non-alphabet character in the base DN in an LDAP search DNS query. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2012:0683 CVE-2012-2134 RHSA-2012:0683-01 Platform(s): CentOS Linux 6 Red Hat Enterprise Linux 6 Product(s): bind-dyndb-ldap Definition Synopsis bind-dyndb-ldap is earlier than 0:0.2.0-7.el6_2.1 AND Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x
BACK