[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: (ITS#8240) OpenLDAP ber_get_next denial of service vulnerability
hyc@symas.com wrote:
> Our patch response was too hasty. There is no OpenLDAP bug here, the real
> issue is production binaries being built with asserts enabled instead of
> compiling with -DNDEBUG. That's an issue for packagers and distros to resolve.
> Closing this ITS, not an OpenLDAP bug.
I've compiled with CFLAGS="-DNDEBUG" (also tried CPPFLAGS) but this did not
help. slapd still crashes when hitting the assert.
Ciao, Michael.