[Fedora-directory-devel] [SECURITY] Fedora Directory Server 1.0.1 Update
Richard Megginson
rmeggins at redhat.com
Thu Mar 2 14:55:07 UTC 2006
---------------------------------------------------------------------
Fedora Directory Server Update Notification
2006-03-01
---------------------------------------------------------------------
Product : Fedora Directory Server
Name : Directory Server
Version : 1.0.1
Release : 1
Summary : The core LDAP server engine
Description :
The core directory server component of Fedora Directory Server is the
LDAP server engine/daemon.
---------------------------------------------------------------------
Update Information:
Evgeny Legerov of GLEG, Ltd. (http://www.gleg.net/) discovered several
flaws affecting Fedora Directory Server using the GLEG ProtoVer LDAP
test suite. A remote attacker who is able to connect to the directory
server could send malicious requests which would cause the server to
crash leading to a denial of service.
The Common Vulnerabilities and Exposures project assigned the names
CVE-2006-0451, CVE-2006-0452, and CVE-2006-0453 to these issues.
---------------------------------------------------------------------
This update is available by upgrading to Fedora Directory Server 1.0.2
available here:
http://directory.fedora.redhat.com/wiki/Download
The above link has instructions for downloading the new version and
upgrading older versions.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3178 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-devel/attachments/20060302/bf015d37/attachment.bin>
More information about the Fedora-directory-devel
mailing list