ports/132261: openldap-client-2.4.15 crashes on simple queries
Martin
nakal at web.de
Mon Mar 2 17:10:02 UTC 2009
>Number: 132261
>Category: ports
>Synopsis: openldap-client-2.4.15 crashes on simple queries
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Mon Mar 02 17:10:01 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator: Martin
>Release: -CURRENT
>Organization:
>Environment:
More than one machine:
FreeBSD zelda.local 8.0-CURRENT FreeBSD 8.0-CURRENT #0: Mon Mar 2 01:13:45 CET 2009
FreeBSD blinky 8.0-CURRENT FreeBSD 8.0-CURRENT #0: Thu Jan 8 14:05:37 CET 2009
>Description:
ldapsearch segfaults when using simply queries since update on 2.4.14. openldap-client-2.4.13 does not have this problem. The query on which the client crashes has to use a valid binddn "-D" option with a valid password. First it seems to show the response correctly, but the last line shows a crash "Segmentation fault (core dumped)".
It is quite dangerous, if you use ldap for login (pam_ldap). The crash does not allow to login anymore. That's why I gave it severity "serious".
I suspect the crash somewhere inside liblber-2.4.so.5, but all tracedumps are broken, so I cannot really tell.
>How-To-Repeat:
It's easy to reproduce:
> ldapsearch -D "cn=Manager,dc=home" -W "(uid=*)"
(assuming you have an admin user with binddn "cn=Manager,dc=home" and enter the correct password)
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list