Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier
Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value.
Reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4079
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=7059;selectid=7059
Affects edge (openldap-2.4.26-r2)
(from redmine: issue id 835, created on 2011-11-22, closed on 2012-01-05)
- Relations:
- relates #836 (closed)
- relates #837 (closed)
- relates #838 (closed)
- Changesets:
- Revision 1c762bb7 by Natanael Copa on 2011-11-22T07:15:17Z:
main/openldap: security fix (CVE-2011-4079)
fixes #835