TITLE: Fedora update for openldap SECUNIA ADVISORY ID: SA17845 VERIFY ADVISORY: http://secunia.com/advisories/17845/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: >From local network OPERATING SYSTEM: Fedora Core 3 http://secunia.com/product/4222/ DESCRIPTION: Fedora has issued an update for openldap. This fixes a security issue, which can be exploited by malicious people to gain knowledge of sensitive information. For more information: SA15906 This also fixes a security issue where certificates and keys are created in an insecure location and may be exposed. SOLUTION: Apply updated packages. Fedora Core 3: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ 3c052ebf0ea89f8043745ea1316c8fa7 SRPMS/openldap-2.2.29-1.FC3.src.rpm e91939937549353f701c67d714aa9e34 x86_64/openldap-2.2.29-1.FC3.x86_64.rpm 87128b39dc854f3512ac7cf01a847af0 x86_64/openldap-devel-2.2.29-1.FC3.x86_64.rpm ee4b182dba186434091f4ed70e2260f4 x86_64/openldap-servers-2.2.29-1.FC3.x86_64.rpm 75881a0ee92492b68af2985b0a928147 x86_64/openldap-servers-sql-2.2.29-1.FC3.x86_64.rpm fffd0ade442bd4566709665e2a914fa7 x86_64/openldap-clients-2.2.29-1.FC3.x86_64.rpm 366b07cf11cd4f6cd968bce1699e708d x86_64/compat-openldap-2.2.29_2.1.30-1.FC3.x86_64.rpm 01217650770d476ae54e720b4683cc3a x86_64/debug/openldap-debuginfo-2.2.29-1.FC3.x86_64.rpm e57eebad07b69b93556c1ba5b3ba7539 x86_64/openldap-2.2.29-1.FC3.i386.rpm 6a6e656bf3726ada3900adea1bc7bde4 x86_64/compat-openldap-2.2.29_2.1.30-1.FC3.i386.rpm e57eebad07b69b93556c1ba5b3ba7539 i386/openldap-2.2.29-1.FC3.i386.rpm 172c14b7fc249e18dbbd285920451b25 i386/openldap-devel-2.2.29-1.FC3.i386.rpm 9719b4fd54ddc05ae2da61bb5e62729f i386/openldap-servers-2.2.29-1.FC3.i386.rpm 94a352bfc63ca101d46dd0bcec34200c i386/openldap-servers-sql-2.2.29-1.FC3.i386.rpm e971c26a61481f3bd09807a467007adf i386/openldap-clients-2.2.29-1.FC3.i386.rpm 6a6e656bf3726ada3900adea1bc7bde4 i386/compat-openldap-2.2.29_2.1.30-1.FC3.i386.rpm b0bf94f4c283995805ff37991131d073 i386/debug/openldap-debuginfo-2.2.29-1.FC3.i386.rpm OTHER REFERENCES: SA15906: http://secunia.com/advisories/15906/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------