GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Sun Nov 25, 2007 10:26 pm Post subject: [ GLSA 200711-33 ] nss_ldap: Information disclosure |
|
|
Gentoo Linux Security Advisory
Title: nss_ldap: Information disclosure (GLSA 200711-33)
Severity: low
Exploitable: remote
Date: November 25, 2007
Bug(s): #198390
ID: 200711-33
Synopsis
A race condition might lead to theft of user credentials or information
disclosure in services using nss_ldap.
Background
nss_ldap is a Name Service Switch module which allows 'passwd', 'group'
and 'host' database information to be pulled from LDAP.
Affected Packages
Package: sys-auth/nss_ldap
Vulnerable: < 258
Unaffected: >= 258
Architectures: All supported architectures
Description
Josh Burley reported that nss_ldap does not properly handle the LDAP
connections due to a race condition that can be triggered by
multi-threaded applications using nss_ldap, which might lead to
requested data being returned to a wrong process.
Impact
Remote attackers could exploit this race condition by sending queries
to a vulnerable server using nss_ldap, possibly leading to theft of
user credentials or information disclosure (e.g. Dovecot returning
wrong mailbox contents).
Workaround
There is no known workaround at this time.
Resolution
All nss_ldap users should upgrade to the latest version:
Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-auth/nss_ldap-258" |
References
CVE-2007-5794
Last edited by GLSA on Tue Jan 20, 2015 4:25 am; edited 2 times in total |
|