Issue 8203 - Fix in ITS#8036 is incomplete
Summary: Fix in ITS#8036 is incomplete
Status: VERIFIED FIXED
Alias: None
Product: OpenLDAP
Classification: Unclassified
Component: slapd (show other issues)
Version: 2.4.41
Hardware: All All
: --- normal
Target Milestone: ---
Assignee: OpenLDAP project
URL:
Keywords:
: 8194 (view as issue list)
Depends on:
Blocks:
 
Reported: 2015-07-24 17:34 UTC by Howard Chu
Modified: 2020-03-13 20:08 UTC (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.
Description Howard Chu 2015-07-24 17:34:01 UTC 
Full_Name: Howard Chu
Version: 2.4.41
OS: 
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (78.155.231.122)
Submitted by: hyc


The fix in ITS#8036 only corrects the situation for candidate-based searches,
not for scope-based searches. In scope-based searches the "fix" treats the
scopes array incorrectly and can overwrite the heap. A new fix is coming
shortly.
Comment 1 Howard Chu 2015-07-24 17:36:59 UTC 
changed notes
changed state Open to Test
moved from Incoming to Software Bugs
Comment 2 Quanah Gibson-Mount 2015-07-28 16:02:30 UTC 
changed notes
changed state Test to Release
Comment 3 OpenLDAP project 2015-08-18 17:42:01 UTC 
fixed in master
fixed in RE25
fixed in RE24 (2.4.42)
Comment 4 Quanah Gibson-Mount 2015-08-18 17:42:01 UTC 
changed notes
changed state Release to Closed
Comment 5 Quanah Gibson-Mount 2020-03-13 20:08:47 UTC 
*** Issue 8194 has been marked as a duplicate of this issue. ***