CVE-2011-1081
First published: Mon Feb 28 2011(Updated: )
It was reported [1],[2] that OpenLDAP's slapd daemon would crash when it received a request to modify a DN and submits an empty old DN in the request. No binding is necessary, so even an anonymous user could cause slapd to crash. This was reported against OpenLDAP 2.4.23 and was fixed in 2.4.24 [3]. References: [1] <a href="http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6768">http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6768</a> [2] <a href="https://bugzilla.novell.com/show_bug.cgi?id=674985#c1">https://bugzilla.novell.com/show_bug.cgi?id=674985#c1</a> [3] <a href="http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9">http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat OpenLDAP Servers | =2.4.6 | |
| Red Hat OpenLDAP Servers | =2.4.7 | |
| Red Hat OpenLDAP Servers | =2.4.8 | |
| Red Hat OpenLDAP Servers | =2.4.9 | |
| Red Hat OpenLDAP Servers | =2.4.10 | |
| Red Hat OpenLDAP Servers | =2.4.11 | |
| Red Hat OpenLDAP Servers | =2.4.12 | |
| Red Hat OpenLDAP Servers | =2.4.13 | |
| Red Hat OpenLDAP Servers | =2.4.14 | |
| Red Hat OpenLDAP Servers | =2.4.15 | |
| Red Hat OpenLDAP Servers | =2.4.16 | |
| Red Hat OpenLDAP Servers | =2.4.17 | |
| Red Hat OpenLDAP Servers | =2.4.18 | |
| Red Hat OpenLDAP Servers | =2.4.19 | |
| Red Hat OpenLDAP Servers | =2.4.20 | |
| Red Hat OpenLDAP Servers | =2.4.21 | |
| Red Hat OpenLDAP Servers | =2.4.22 | |
| Red Hat OpenLDAP Servers | =2.4.23 |
Remedy
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/43331
- http://www.redhat.com/support/errata/RHSA-2011-0347.html
- http://openwall.com/lists/oss-security/2011/02/28/1
- http://openwall.com/lists/oss-security/2011/03/01/11
- https://bugzilla.redhat.com/show_bug.cgi?id=680975
- http://openwall.com/lists/oss-security/2011/03/01/15
- http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9
- http://securitytracker.com/id?1025191
- http://www.openldap.org/lists/openldap-announce/201102/msg00000.html
- http://openwall.com/lists/oss-security/2011/02/28/2
- http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6768
- https://bugzilla.novell.com/show_bug.cgi?id=674985
- http://www.vupen.com/english/advisories/2011/0665
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:055
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:056
- http://www.ubuntu.com/usn/USN-1100-1
- http://secunia.com/advisories/43718
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- http://security.gentoo.org/glsa/glsa-201406-36.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66239
- https://bugzilla.novell.com/show_bug.cgi?id=674985#c1
- http://www.openwall.com/lists/oss-security/2011/03/01/11
- https://access.redhat.com/security/cve/CVE-2011-1081
- https://rhn.redhat.com/errata/RHSA-2011-0347.html
Frequently Asked Questions
What is the severity of CVE-2011-1081?
CVE-2011-1081 is classified as a critical vulnerability due to the potential for denial of service.
How do I fix CVE-2011-1081?
To fix CVE-2011-1081, upgrade OpenLDAP to version 2.4.24 or later.
What are the affected versions of OpenLDAP for CVE-2011-1081?
CVE-2011-1081 affects OpenLDAP versions 2.4.6 to 2.4.23.
Can an anonymous user exploit CVE-2011-1081?
Yes, an anonymous user can exploit CVE-2011-1081 to crash the slapd daemon.
What is the impact of CVE-2011-1081 on OpenLDAP?
The impact of CVE-2011-1081 is that it can cause the OpenLDAP slapd daemon to crash, leading to service interruption.
- agent/references
- agent/type
- agent/first-publish-date
- agent/remedy
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-1081
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/openldap
- canonical/red hat openldap servers
- version/red hat openldap servers/2.4.6
- version/red hat openldap servers/2.4.7
- version/red hat openldap servers/2.4.8
- version/red hat openldap servers/2.4.9
- version/red hat openldap servers/2.4.10
- version/red hat openldap servers/2.4.11
- version/red hat openldap servers/2.4.12
- version/red hat openldap servers/2.4.13
- version/red hat openldap servers/2.4.14
- version/red hat openldap servers/2.4.15
- version/red hat openldap servers/2.4.16
- version/red hat openldap servers/2.4.17
- version/red hat openldap servers/2.4.18
- version/red hat openldap servers/2.4.19
- version/red hat openldap servers/2.4.20
- version/red hat openldap servers/2.4.21
- version/red hat openldap servers/2.4.22
- version/red hat openldap servers/2.4.23