'[Fedora-directory-announce] [SECURITY] Fedora Directory Server'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       fedora-directory-announce
Subject:    [Fedora-directory-announce] [SECURITY] Fedora Directory Server
From:       Richard Megginson <rmeggins () redhat ! com>
Date:       2006-03-02 14:55:07
Message-ID: 4407074B.4090505 () redhat ! com
[Download RAW message or body]


---------------------------------------------------------------------
Fedora Directory Server Update Notification
2006-03-01
---------------------------------------------------------------------

Product     : Fedora Directory Server
Name        : Directory Server
Version     : 1.0.1
Release     : 1
Summary     : The core LDAP server engine
Description :
The core directory server component of Fedora Directory Server is the
LDAP server engine/daemon.
---------------------------------------------------------------------
Update Information:

Evgeny Legerov of GLEG, Ltd. (http://www.gleg.net/) discovered several
flaws affecting Fedora Directory Server using the GLEG ProtoVer LDAP
test suite.  A remote attacker who is able to connect to the directory
server could send malicious requests which would cause the server to
crash leading to a denial of service.
The Common Vulnerabilities and Exposures project assigned the names
CVE-2006-0451, CVE-2006-0452, and CVE-2006-0453 to these issues.

---------------------------------------------------------------------
This update is available by upgrading to Fedora Directory Server 1.0.2
available here:
       http://directory.fedora.redhat.com/wiki/Download

The above link has instructions for downloading the new version and
upgrading older versions.



["smime.p7s" (application/x-pkcs7-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic