Re: [SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service
From: Dominic Hargreaves <dom@earth.li>
Date: Tue, 11 Dec 2007 23:03:05 +0000
Message-id: <[🔎] 20071211230305.GV22780@urchin.earth.li>
In-reply-to: <20071211222213.GA9481@steve.org.uk>
References: <20071211222213.GA9481@steve.org.uk>

On Tue, Dec 11, 2007 at 10:22:13PM +0000, Steve Kemp wrote:

> Package        : libnss-ldap
> Vulnerability  : denial of service
> Problem type   : local
> Debian-specific: no
> CVE Id(s)      : CVE-2007-5794
> Debian Bug     : 453868
> 
> It was reported that a race condition exists in libnss-ldap, an
> NSS module for using LDAP as a naming service, which could cause
> denial of service attacks when applications use pthreads.
> 
> This problem was spotted in the dovecot IMAP/POP server but
> potentially affects more programs.

I believe this vulnerability has been mislablled as a denial of service
vulnerability, rather than an information disclosure vulnerability:

According to various sources, eg

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5794
https://bugzilla.redhat.com/show_bug.cgi?id=154314

This bug may allow users to obtain effective credentials of a different
user (under certain confurations).

It may be worth reissuing the advisory to make this clear.

Dominic.

-- 
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Reply to:

Prev by Date: Re: [SECURITY] [DSA 1481-1] New Linux 2.6.18 packages fix several vulnerabilities
Next by Date: Re: [SECURITY] [DSA 1481-1] New Linux 2.6.18 packages fix several vulnerabilities
Previous by thread: Re: [SECURITY] [DSA 1481-1] New Linux 2.6.18 packages fix several vulnerabilities
Next by thread: Re: [SECURITY] [DSA 1430-1] New libnss-ldap packages fix denial of service
Index(es):
- Date
- Thread