enterprise-support team mailing list archive

Thread
Date

[Bug 1446809] Re: [SRU] denial of service via an LDAP search query with attrsOnly set to true (CVE-2012-1164)

To: enterprise-support@xxxxxxxxxxxxxxxxxxx
From: Sebastien Bacher <seb128@xxxxxxxxxx>
Date: Mon, 18 May 2015 14:10:50 -0000
Reply-to: Bug 1446809 <1446809@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thanks, that seems fixed in the current serie, so closing that part and
accepting for precise. Since the issue has a CVE replacing the sponsors
by the security-team sponsors

** Also affects: openldap (Ubuntu Precise)
   Importance: Undecided
       Status: New

** Changed in: openldap (Ubuntu)
       Status: New => Fix Released

** Changed in: openldap (Ubuntu)
   Importance: Undecided => High

** Changed in: openldap (Ubuntu Precise)
       Status: New => Triaged

** Changed in: openldap (Ubuntu Precise)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to openldap in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1446809

Title:
  [SRU] denial of service via an LDAP search query with attrsOnly set to
  true (CVE-2012-1164)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/1446809/+subscriptions

References

[Bug 1446809] [NEW] denial of service via an LDAP search query with attrsOnly set to true (CVE-2012-1164)
From: Felipe Reyes, 2015-04-21