[Bug 1446809] Re: [SRU] denial of service via an LDAP search query with attrsOnly set to true (CVE-2012-1164)
Ryan Tandy
1446809 at bugs.launchpad.net
Tue May 19 19:56:07 UTC 2015
Hello,
On Tue, May 19, 2015 at 07:25:06PM -0000, Felipe Reyes wrote:
>Here I'm attaching a new version of the patch for precise that includes
>fixes for CVE-2012-1164, CVE-2013-4449 and CVE-2015-1545
The precise debdiff adds d/p/0001-ITS-7723-fix-reference-counting.patch
which is the same as CVE-2013-4449.patch but not used in d/p/series.
Thanks for working on these fixes.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in Ubuntu.
https://bugs.launchpad.net/bugs/1446809
Title:
[SRU] denial of service via an LDAP search query (CVE-2012-1164,
CVE-2013-4449, CVE-2015-1545)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/1446809/+subscriptions
More information about the Ubuntu-server-bugs
mailing list