Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Pat Riehecky <riehecky-13hema8v3vg <at> public.gmane.org>
Subject: Security ERRATA Important: nss-pam-ldapd on SL6.x i386/x86_64
Newsgroups: gmane.linux.scientific.errata
Date: Monday 4th March 2013 22:58:33 UTC (over 3 years ago)
Synopsis:          Important: nss-pam-ldapd security update
Issue Date:        2013-03-04
CVE Numbers:       CVE-2013-0288
--

An array index error, leading to a stack-based buffer overflow flaw, was
found in the way nss-pam-ldapd managed open file descriptors. An attacker
able to make a process have a large number of open file descriptors and
perform name lookups could use this flaw to cause the process to crash or,
potentially, execute arbitrary code with the privileges of the user
running the process. (CVE-2013-0288)
--

SL6
   x86_64
     nss-pam-ldapd-0.7.5-18.1.el6_4.i686.rpm
     nss-pam-ldapd-0.7.5-18.1.el6_4.x86_64.rpm
     nss-pam-ldapd-debuginfo-0.7.5-18.1.el6_4.i686.rpm
     nss-pam-ldapd-debuginfo-0.7.5-18.1.el6_4.x86_64.rpm
   i386
     nss-pam-ldapd-0.7.5-18.1.el6_4.i686.rpm
     nss-pam-ldapd-debuginfo-0.7.5-18.1.el6_4.i686.rpm

- Scientific Linux Development Team
 
CD: 4ms