English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.121239
Category:Gentoo Local Security Checks
Title:Gentoo Security Advisory GLSA 201406-36
Summary:Gentoo Linux Local Security Checks GLSA 201406-36
Description:Summary:
Gentoo Linux Local Security Checks GLSA 201406-36

Vulnerability Insight:
Multiple vulnerabilities have been discovered in OpenLDAP. Please review the CVE identifiers referenced below for details.

Solution:
Update the affected packages to the latest available version.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-3767
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036138.html
http://security.gentoo.org/glsa/glsa-201406-36.xml
http://marc.info/?l=oss-security&m=125198917018936&w=2
http://marc.info/?l=oss-security&m=125369675820512&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11178
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7274
http://www.redhat.com/support/errata/RHSA-2010-0543.html
http://www.redhat.com/support/errata/RHSA-2011-0896.html
http://secunia.com/advisories/38769
http://secunia.com/advisories/40677
SuSE Security Announcement: SUSE-SR:2009:016 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html
http://www.vupen.com/english/advisories/2009/3056
http://www.vupen.com/english/advisories/2010/1858
Common Vulnerability Exposure (CVE) ID: CVE-2010-0211
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
BugTraq ID: 41770
http://www.securityfocus.com/bid/41770
Bugtraq: 20110105 VMSA-2011-0001 VMware ESX third party updates for Service Console packages glibc, sudo, and openldap (Google Search)
http://www.securityfocus.com/archive/1/515545/100/0/threaded
http://www.redhat.com/support/errata/RHSA-2010-0542.html
http://www.securitytracker.com/id?1024221
http://secunia.com/advisories/40639
http://secunia.com/advisories/40687
http://secunia.com/advisories/42787
SuSE Security Announcement: SUSE-SR:2010:014 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
http://www.vupen.com/english/advisories/2010/1849
http://www.vupen.com/english/advisories/2011/0025
Common Vulnerability Exposure (CVE) ID: CVE-2010-0212
Common Vulnerability Exposure (CVE) ID: CVE-2011-1024
1025188
http://securitytracker.com/id?1025188
43331
http://secunia.com/advisories/43331
43708
http://secunia.com/advisories/43708
43718
http://secunia.com/advisories/43718
ADV-2011-0665
http://www.vupen.com/english/advisories/2011/0665
GLSA-201406-36
MDVSA-2011:055
http://www.mandriva.com/security/advisories?name=MDVSA-2011:055
MDVSA-2011:056
http://www.mandriva.com/security/advisories?name=MDVSA-2011:056
RHSA-2011:0346
http://www.redhat.com/support/errata/RHSA-2011-0346.html
RHSA-2011:0347
http://www.redhat.com/support/errata/RHSA-2011-0347.html
USN-1100-1
http://www.ubuntu.com/usn/USN-1100-1
[openldap-announce] 20110212 OpenLDAP 2.4.24 available
http://www.openldap.org/lists/openldap-announce/201102/msg00000.html
[openldap-technical] 20100429 ppolicy master/slave issue
http://www.openldap.org/lists/openldap-technical/201004/msg00247.html
[oss-security] 20110224 CVE Request -- OpenLDAP -- two issues
http://openwall.com/lists/oss-security/2011/02/24/12
[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issues
http://openwall.com/lists/oss-security/2011/02/25/13
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-ldap/chain.c.diff?r1=1.76&r2=1.77&hideattic=1&sortbydate=0
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607
https://bugzilla.novell.com/show_bug.cgi?id=674985
https://bugzilla.redhat.com/show_bug.cgi?id=680466
Common Vulnerability Exposure (CVE) ID: CVE-2011-1025
1025190
http://securitytracker.com/id?1025190
[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issue
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-ndb/bind.cpp.diff?r1=1.5&r2=1.8
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6661
https://bugzilla.redhat.com/show_bug.cgi?id=680472
Common Vulnerability Exposure (CVE) ID: CVE-2011-1081
1025191
http://securitytracker.com/id?1025191
[oss-security] 20110228 Re: CVE Request -- OpenLDAP -- two issues
http://openwall.com/lists/oss-security/2011/02/28/1
http://openwall.com/lists/oss-security/2011/02/28/2
[oss-security] 20110301 Re: CVE Request -- OpenLDAP -- two issues
http://openwall.com/lists/oss-security/2011/03/01/11
http://openwall.com/lists/oss-security/2011/03/01/15
http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6768
https://bugzilla.redhat.com/show_bug.cgi?id=680975
openldap-modrdnc-dos(66239)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66239
Common Vulnerability Exposure (CVE) ID: CVE-2011-4079
46599
http://secunia.com/advisories/46599
50384
http://www.securityfocus.com/bid/50384
USN-1266-1
http://www.ubuntu.com/usn/USN-1266-1
[oss-security] 20111026 CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow
http://www.openwall.com/lists/oss-security/2011/10/26/5
[oss-security] 20111026 Re: CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow
http://www.openwall.com/lists/oss-security/2011/10/26/9
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=507238713b71208ec4f262f312cb495a302df9e9
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=7059%3Bselectid=7059
https://bugzilla.redhat.com/show_bug.cgi?id=749324
openldap-utf8stringnormalize-dos(70991)
https://exchange.xforce.ibmcloud.com/vulnerabilities/70991
Common Vulnerability Exposure (CVE) ID: CVE-2012-1164
20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra
https://seclists.org/bugtraq/2019/Dec/23
20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra
http://seclists.org/fulldisclosure/2019/Dec/26
48372
http://secunia.com/advisories/48372
49607
http://secunia.com/advisories/49607
52404
http://www.securityfocus.com/bid/52404
MDVSA-2012:130
http://www.mandriva.com/security/advisories?name=MDVSA-2012:130
RHSA-2012:0899
http://rhn.redhat.com/errata/RHSA-2012-0899.html
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=7143
http://www.openldap.org/software/release/changes.html
https://support.apple.com/kb/HT210788
Common Vulnerability Exposure (CVE) ID: CVE-2012-2668
1027127
http://www.securitytracker.com/id?1027127
53823
http://www.securityfocus.com/bid/53823
RHSA-2012:1151
http://rhn.redhat.com/errata/RHSA-2012-1151.html
[oss-security] 20120605 CVE request: openldap does not honor TLSCipherSuite configuration option
http://www.openwall.com/lists/oss-security/2012/06/05/4
[oss-security] 20120605 Re: CVE request: openldap does not honor TLSCipherSuite configuration option
http://www.openwall.com/lists/oss-security/2012/06/06/1
[oss-security] 20120606 Re: CVE request: openldap does not honor TLSCipherSuite configuration option
http://www.openwall.com/lists/oss-security/2012/06/06/2
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676309
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=2c2bb2e
http://www.openldap.org/its/index.cgi?findid=7285
https://bugzilla.redhat.com/show_bug.cgi?id=825875
openldap-nss-weak-security(76099)
https://exchange.xforce.ibmcloud.com/vulnerabilities/76099
CopyrightCopyright (C) 2015 Eero Volotinen

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.