Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier
Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value.
Reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4079
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=7059;selectid=7059
Affects Alpine Linux v2.2 (openldap-2.4.25-r1)
(from redmine: issue id 837, created on 2011-11-22, closed on 2012-01-05)
- Relations:
- relates #835 (closed)
- Changesets:
- Revision 213618cf by Natanael Copa on 2011-11-22T07:17:54Z:
main/openldap: security fix (CVE-2011-4079)
fixes #837