[Bug 884163] Re: OpenLDAP "UTF8StringNormalize()" Off-by-One Denial of Service Vulnerability
Jamie Strandboge
jamie at ubuntu.com
Mon Nov 14 20:02:29 UTC 2011
Hardy's openldap2.3 does not have postalAddressValidate(), which is the
only known function to pass UTF8StringNormalize() a 0 length string.
** Changed in: openldap (Ubuntu Hardy)
Status: In Progress => Invalid
** Changed in: openldap (Ubuntu Hardy)
Assignee: Jamie Strandboge (jdstrand) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in Ubuntu.
https://bugs.launchpad.net/bugs/884163
Title:
OpenLDAP "UTF8StringNormalize()" Off-by-One Denial of Service
Vulnerability
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/884163/+subscriptions
More information about the Ubuntu-server-bugs
mailing list