oval:org.mitre.oval:def:12715

Definition Id: oval:org.mitre.oval:def:12715

Oval ID:	oval:org.mitre.oval:def:12715
Title:	DSA-2077-1 openldap -- several
Description:	Two remote vulnerabilities have been discovered in OpenLDAP. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-0211 The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences. CVE-2010-0212 OpenLDAP 2.4.22 allows remote attackers to cause a denial of service via a modrdn call with a zero-length RDN destination string. For the stable distribution, this problem has been fixed in version 2.4.11-1+lenny2. For the unstable distribution, this problem has been fixed in version 2.4.23-1. We recommend that you upgrade your openldap packages.
Family:	unix	Class:	patch
Reference(s):	DSA-2077-1 CVE-2010-0211 CVE-2010-0212	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	openldap
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Packages section slapd-dbg DPKG is earlier than 2.4.11-1+lenny2 AND libldap-2.4-2 DPKG is earlier than 2.4.11-1+lenny2 AND libldap-2.4-2-dbg DPKG is earlier than 2.4.11-1+lenny2 AND ldap-utils DPKG is earlier than 2.4.11-1+lenny2 AND libldap2-dev DPKG is earlier than 2.4.11-1+lenny2 AND slapd DPKG is earlier than 2.4.11-1+lenny2

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:12715