OpenLDAP
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

Viewing Software Bugs/7303
Full headers

From: hyc@openldap.org
Subject: bdb/hdb search checks aliases unnecessarily
 Compose comment
Download message
State:
0 replies:
0 followups:

Major security issue: yes  no

Notes:

Notification: 


Date: Tue, 12 Jun 2012 23:15:36 +0000
From: hyc@openldap.org
To: openldap-its@OpenLDAP.org
Subject: bdb/hdb search checks aliases unnecessarily

Full_Name: Howard Chu
Version: HEAD/RE24
OS: 
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (37.19.96.193)
Submitted by: hyc


If a search request has derefSearching set in the alias deref option, the
search_aliases() function walks thru a (potentially) large number of entries
checking to see if they are aliases, even if the objectclass index shows there
are no alias entries in the database. It should exit early instead.

The bug is also present to a lesser degree in back-mdb; the back-mdb version of
search_aliases() would only do a single unneeded entry lookup.
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

The OpenLDAP Issue Tracking System uses a hacked version of JitterBug

______________
© Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org