OpenLDAP
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

Viewing Software Bugs/5562
Full headers

From: lea.anthony@meirion-dwyfor.ac.uk
Subject: SEGV using TLS/SASL
Compose comment
Download message
State:
0 replies:
1 followups: 1

Major security issue: yes  no

Notes:

Notification:


Date: Mon, 16 Jun 2008 09:00:47 GMT
From: lea.anthony@meirion-dwyfor.ac.uk
To: openldap-its@OpenLDAP.org
Subject: SEGV using TLS/SASL
Full_Name: Lea Anthony
Version: 2.3.40
OS: Arch Linux
URL: http://pastebin.com/f6b680f22
Submission from: (NULL) (194.82.229.100)


I have TLS setup as follows:

TLSCertificateFile /etc/openldap/certs/cert.pem
TLSCertificateKeyFile /etc/openldap/certs/key.pem
TLSCipherSuite HIGH:MEDIUM:+TLSv1:+SSLv2:+SSLv3

The server starts fine and doing "ldapsearch -x -ZZ" will do an anonymous bind
fine.

However, doing "ldapsearch -ZZ" will cause a segfault on the server. The
pastebin URL contains the post SSL negotiation debug lines from "slapd -d -1".


Followup 1

Download message
Date: Mon, 16 Jun 2008 10:00:06 +0100 (BST)
From: Lea Anthony <lea.anthony@meirion-dwyfor.ac.uk>
To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#5562) SEGV using TLS/SASL
Duplicate. Please close.

----- Original Message -----
From: openldap-its@OpenLDAP.org
To: "lea anthony" <lea.anthony@meirion-dwyfor.ac.uk>
Sent: Monday, June 16, 2008 10:00:49 AM (GMT) Europe/London
Subject: Re: (ITS#5562) SEGV using TLS/SASL


*** THIS IS AN AUTOMATICALLY GENERATED REPLY ***

Thanks for your report to the OpenLDAP Issue Tracking System.  Your
report has been assigned the tracking number ITS#5562.

One of our support engineers will look at your report in due course.
Note that this may take some time because our support engineers
are volunteers.  They only work on OpenLDAP when they have spare
time.

If you need to provide additional information in regards to your
issue report, you may do so by replying to this message.  Note that
any mail sent to openldap-its@openldap.org with (ITS#5562)
in the subject will automatically be attached to the issue report.

	mailto:openldap-its@openldap.org?subject=(ITS#5562)

You may follow the progress of this report by loading the following
URL in a web browser:
    http://www.OpenLDAP.org/its/index.cgi?findid=5562

Please remember to retain your issue tracking number (ITS#5562)
on any further messages you send to us regarding this report.  If
you don't then you'll just waste our time and yours because we
won't be able to properly track the report.

Please note that the Issue Tracking System is not intended to
be used to seek help in the proper use of OpenLDAP Software.
Such requests will be closed.

OpenLDAP Software is user supported.
	http://www.OpenLDAP.org/support/

--------------
Copyright 1998-2007 The OpenLDAP Foundation, All Rights Reserved.



Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest


The OpenLDAP Issue Tracking System uses a hacked version of JitterBug

______________
© Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org